Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

217 matches found

Debian CVE
Debian CVEadded 2022/08/03 12:19 a.m.29 views

CVE-2022-34927

MilkyTracker v1.03.00 was discovered to contain a stack overflow via the component LoaderXM::load. This vulnerability is triggered when the program is supplied a crafted XM module file...

7.8CVSS7.6AI score0.00052EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletinsadded 2022/07/14 9:56 a.m.131 views

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-35618

Summary IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a Denial of Service attack. Vulnerability Details CVEID: CVE-2020-36518 DESCRIPTION: FasterXML jackson-databind is vulnerable to a denial of service, caused by a Java StackOverflow exception. By using a...

7.5CVSS7.9AI score0.00487EPSS
Exploits1Affected Software4
RedHat Linux
RedHat Linuxadded 2022/07/07 2:19 p.m.0 views

jackson-databind: denial of service via a large depth of nested objects

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

7.5CVSS6.7AI score0.00487EPSS
Exploits1References5
NVD
NVDadded 2022/07/01 6:15 p.m.12 views

CVE-2022-32031

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetRouteStatic...

7.8CVSS0.00314EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletinsadded 2022/06/30 7:57 p.m.30 views

Security Bulletin: UrbanCode Deploy is vulnerable to denial of service due to Jackson-databind (CVE-2020-36518)

Summary When processing untrusted data in a plugin step to process jackson-databind data, a large depth of nested objects may be used to cause a denial of service within the step. Vulnerability Details CVEID: CVE-2020-36518 DESCRIPTION: FasterXML jackson-databind is vulnerable to a denial of...

7.5CVSS7.8AI score0.00487EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linuxadded 2022/06/23 10:41 a.m.2 views

jackson-databind: denial of service via a large depth of nested objects

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

7.5CVSS6.7AI score0.00487EPSS
Exploits1References5
OSV
OSVadded 2022/06/22 3:8 p.m.372 views

GHSA-5CRP-9R3C-P9VR Improper Handling of Exceptional Conditions in Newtonsoft.Json

Newtonsoft.Json prior to version 13.0.1 is vulnerable to Insecure Defaults due to improper handling of expressions with high nesting level that lead to StackOverFlow exception or high CPU and RAM usage. Exploiting this vulnerability results in Denial Of Service DoS. The serialization and...

7.5CVSS7.7AI score0.02228EPSS
Exploits2References7
RedHat Linux
RedHat Linuxadded 2022/06/06 4:0 p.m.3 views

jackson-databind: denial of service via a large depth of nested objects

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

7.5CVSS6.7AI score0.00487EPSS
Exploits1References5
Veracode
Veracodeadded 2022/05/09 7:41 a.m.66 views

Denial Of Service (DoS)

Newtonsoft.Json is vulnerable to denial of service. The use of insecure defaults cause an StackOverFlow exception SOE whenever nested expressions are being processed when an attacker sends 5 requests that cause SOE in time frame of 5 minutes...

7.5CVSS3.7AI score0.02228EPSS
Exploits2References7Affected Software1
Tenable Nessus
Tenable Nessusadded 2022/05/02 12:0 a.m.43 views

Debian DLA-2990-1 : jackson-databind - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2990 advisory. - jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects. CVE-2020-36518 Note that Nessus has not...

7.5CVSS6.8AI score0.00487EPSS
Exploits1References6
Cvelist
Cvelistadded 2022/03/28 8:58 p.m.13 views

CVE-2022-26278

Tenda AC9 v15.03.2.21cn was discovered to contain a stack overflow via the time parameter in the PowerSaveSet function...

9.9AI score0.00422EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2022/03/16 11:47 a.m.67 views

CVE-2020-36518

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

5CVSS7.2AI score0.00487EPSS
Exploits1References4
Veracode
Veracodeadded 2022/03/14 9:2 a.m.90 views

Denial Of Service (DoS)

com.fasterxml.jackson.core:jackson-databind is vulnerable to Denial Of Service DoS. A malicious user is able to cause a StackOverflow exception using a large depth of nested objects resulting in a denial of service conditions...

7.5CVSS7AI score0.00487EPSS
Exploits1References10Affected Software27
NVD
NVDadded 2022/03/11 7:15 a.m.20 views

CVE-2020-36518

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

7.5CVSS0.00487EPSS
Exploits1References7
OSV
OSVadded 2022/03/11 7:15 a.m.42 views

CVE-2020-36518

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

7.5CVSS6.7AI score
Exploits0References7
Prion
Prionadded 2022/03/11 7:15 a.m.32 views

Design/Logic Flaw

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

5CVSS8.3AI score0.00487EPSS
Exploits1References7Affected Software31
OSV
OSVadded 2022/03/11 7:15 a.m.1 views

UBUNTU-CVE-2020-36518

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

7.5CVSS6.8AI score0.00487EPSS
Exploits1References3
CVE
CVEadded 2022/03/11 12:0 a.m.702 views

CVE-2020-36518

CVE-2020-36518 affects jackson-databind prior to 2.13.0, enabling a Java StackOverflow and DoS via excessive nesting depth. In affected advisories, remediation is to upgrade jackson-databind to 2.13.0+ (examples show 2.13.x or newer such as 2.13.4.2 in Crowd/CWD references). Practical impact is d...

7.5CVSS7.4AI score0.00487EPSS
Exploits1References7Affected Software1
FreeBSD
FreeBSDadded 2022/03/11 12:0 a.m.37 views

kafka -- Denial Of Service vulnerability

NIST reports: jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

7.5CVSS8.7AI score0.00487EPSS
Exploits1References1
Cvelist
Cvelistadded 2022/03/11 12:0 a.m.25 views

CVE-2020-36518

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects...

7.7AI score0.00487EPSS
Exploits1References7
Rows per page
Query Builder