Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-12022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled either globally or for a specific...

7.5CVSS8AI score0.07289EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.7 views

SUSE CVE-2018-12022

An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled either globally or for a specific property, the service has the Jodd-db jar for database access for the Jodd framework in the classpath, and an attacker can provide an LDAP...

7.5CVSS8.8AI score0.07289EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/12/02 4:24 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/10/10 12:49 p.m.3 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/09/17 1:45 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/16 4:21 p.m.2 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/15 7:18 p.m.3 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/09 6:14 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/08 12:12 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/08 12:9 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/08 12:4 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/24 6:46 p.m.4 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/17 9:3 p.m.5 views

jackson-databind: improper polymorphic deserialization of types from Jodd-db library

A vulnerability was discovered in jackson-databind where it would permit deserialization of a malicious object using Jodd DB connection classes when using DefaultTyping. An attacker could use this flaw to achieve remote code execution under certain circumstances...

7.5CVSS8AI score0.07289EPSS
Exploits0References4
OSV
OSV
added 2019/03/21 4:0 p.m.1 views

DEBIAN-CVE-2018-12022

An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled either globally or for a specific property, the service has the Jodd-db jar for database access for the Jodd framework in the classpath, and an attacker can provide an LDAP...

7.5CVSS9.2AI score0.07289EPSS
Exploits0References1
OSV
OSV
added 2019/03/21 4:0 p.m.3 views

UBUNTU-CVE-2018-12022

An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled either globally or for a specific property, the service has the Jodd-db jar for database access for the Jodd framework in the classpath, and an attacker can provide an LDAP...

7.5CVSS7.2AI score0.07289EPSS
Exploits0References5
Rows per page
Query Builder