Lucene search
K

5 matches found

AstraLinux
AstraLinux
added 2025/02/06 4:28 p.m.1 views

Astra Linux - уязвимость в jackson-databind

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS7AI score0.07268EPSS
Exploits1References1
OSV
OSV
added 2021/12/09 7:15 p.m.3 views

GHSA-QJW2-HR98-QGFH Unsafe Deserialization in jackson-databind

FasterXML jackson-databind 2.x before 2.6.7.5 and from 2.7.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS7.1AI score0.07268EPSS
Exploits1References14
RedHat Linux
RedHat Linux
added 2020/10/05 3:14 p.m.3 views

jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.6. The interaction between serialization gadgets and typing is mishandled. The highest threat from this vulnerability is to data confidentiality and system availability...

8.1CVSS7.1AI score0.07268EPSS
Exploits1References4
OSV
OSV
added 2020/09/17 7:15 p.m.2 views

DEBIAN-CVE-2020-24750

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS8.1AI score0.07268EPSS
Exploits1References1
OSV
OSV
added 2020/09/17 7:15 p.m.1 views

UBUNTU-CVE-2020-24750

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS7.2AI score0.07268EPSS
Exploits1References3
Rows per page
Query Builder