Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2020/04/28 4:10 p.m.79 views

Moderate: Red Hat Security Advisory: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

An update for the pki-core:10.6 and pki-deps:10.6 modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS6.8AI score0.26587EPSS
Exploits6References22
BDU FSTEC
BDU FSTEC
added 2019/12/22 12:0 a.m.3 views

The vulnerability of the P6DataSource component in the Jackson-databind library of the FasterXML project allows a hacker to gain unauthorized access to information or cause service failures.

The vulnerability of the P6DataSource component in the Jackson-databind library of the FasterXML project is related to the lack of a mechanism for verifying input data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to information or cause service failures...

10CVSS7.1AI score0.04861EPSS
Exploits0References6Affected Software8
RedHat Linux
RedHat Linux
added 2019/11/18 2:40 p.m.4 views

jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

A flaw was discovered in FasterXML jackson-databind, where it would permit polymorphic deserialization of malicious objects using the p6spy gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when @JsonTypeInfo is using Id.CLASS or Id.MINIMALCLASS...

9.8CVSS7.4AI score0.04861EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/10/03 12:0 a.m.46 views

Debian DLA-1943-1 : jackson-databind security update

More deserialization flaws were discovered in jackson-databind relating to the classes in com.zaxxer.hikari.HikariConfig, com.zaxxer.hikari.HikariDataSource, commons-dbcp and com.p6spy.engine.spy.P6DataSource, which could allow an unauthenticated user to perform remote code execution. The issue w...

9.8CVSS8.2AI score0.10676EPSS
Exploits1References6
Rows per page
Query Builder