Lucene search
+L

5 matches found

nessus
nessus
added 2020/03/06 12:0 a.m.77 views

Debian DLA-2135-1 : jackson-databind security update

The following CVEs were reported for jackson-databind source package. CVE-2020-9546 FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.hadoop.shaded.com.zaxxer.hikari.HikariConfig aka shaded hikari-config...

9.8CVSS8AI score0.18671EPSS
Exploits0References5
veracode
veracode
added 2020/03/03 4:8 a.m.51 views

Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution RCE. The vulnerability exists through the deserialization of a JSON payload that uses the com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig gadget...

9.8CVSS3.7AI score0.18671EPSS
Exploits0References40Affected Software305
osv
osv
added 2020/03/02 4:15 a.m.2 views

DEBIAN-CVE-2020-9547

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...

9.8CVSS8.1AI score0.18671EPSS
Exploits0References1
debiancve
debiancve
added 2020/03/02 3:59 a.m.50 views

CVE-2020-9547

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...

9.8CVSS8.9AI score0.18671EPSS
Exploits0
euvd
euvd
added 2020/03/02 3:59 a.m.5 views

EUVD-2020-0438

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...

9.8CVSS8.6AI score0.18671EPSS
Exploits0References65
Rows per page
Query Builder