Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2021/12/09 7:15 p.m.36 views

Unsafe Deserialization in jackson-databind

FasterXML jackson-databind 2.x before 2.9.10.8 and 2.6.7.5 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8.6AI score0.05018EPSS
Exploits2References13Affected Software1
NVD
NVD
added 2021/01/07 12:15 a.m.31 views

CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8.7AI score0.05018EPSS
Exploits2References10
UbuntuCve
UbuntuCve
added 2021/01/07 12:15 a.m.30 views

CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

8.8CVSS6.9AI score0.05018EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2021/01/06 10:30 p.m.23 views

CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

6.7AI score0.05018EPSS
Exploits2References10
Cvelist
Cvelist
added 2021/01/06 10:30 p.m.32 views

CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

8.7AI score0.05018EPSS
Exploits2References10
Rows per page
Query Builder