Lucene search
K

10 matches found

RedHat Linux
RedHat Linux
added 2020/07/28 3:54 p.m.5 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2020/04/14 1:24 p.m.3 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/11/05 9:19 p.m.2 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/24 9:18 a.m.6 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/14 7:1 p.m.5 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/14 6:59 p.m.6 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/14 6:29 p.m.3 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/10 9:54 a.m.4 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/01 7:10 a.m.4 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2019/10/01 7:10 a.m.6 views

jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the mysql gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

7.5CVSS7.4AI score0.21949EPSS
Exploits2References4
Rows per page
Query Builder