6 matches found
VulnCheck KEV: CVE-2020-9547
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...
SUSE CVE-2020-9547
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...
Vulnerability of the com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig component. Java libraries for JSON file parsing, such as jackson-databind, which allow attackers to cause service failures.
The vulnerability of the com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig component is related to memory restoration of unreliable data during JSON file parsing by Java libraries. Exploiting this vulnerability may allow an attacker to cause service failures remotely...
GHSA-Q93H-JC49-78GG jackson-databind mishandles the interaction between serialization gadgets and typing
FasterXML jackson-databind 2.x before 2.9.10.4, 2.8.11.6, and 2.7.9.7 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...
Command Execution Vulnerability in Fastjson JtaTransactionConfig
fastJson is a json serialization tool produced by Alibaba . Fastjson JtaTransactionConfig has a command execution vulnerability that can be exploited by a remote attacker to construct attack code that triggers a remote code execution vulnerability and gain control of the server...
UBUNTU-CVE-2020-9547
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...