Lucene search
K

23 matches found

RedHat Linux
RedHat Linux
added 2025/02/24 12:8 a.m.9 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2025/02/24 12:8 a.m.9 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/06/19 10:15 a.m.9 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/06/15 3:23 p.m.6 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/05/18 9:54 a.m.7 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/05/04 3:59 p.m.8 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/05/03 3:54 p.m.6 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/05/03 2:5 p.m.7 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/08 2:54 p.m.9 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/06 9:1 a.m.17 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/01 10:2 p.m.8 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.12 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.11 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/02/09 11:35 a.m.7 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/01/31 1:18 p.m.7 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/01/31 1:15 p.m.9 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/01/31 1:15 p.m.8 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/01/17 11:47 a.m.8 views

jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAPSINGLEVALUEARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References4
OSV
OSV
added 2022/10/03 12:0 a.m.7 views

GHSA-JJJH-JJXP-WPFF Uncontrolled Resource Consumption in Jackson-databind

In FasterXML jackson-databind 2.4.0-rc1 until 2.12.7.1 and in 2.13.x before 2.13.4.2 resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAPSINGLEVALUEARRAYS feature is enabled. This was patched in 2.12.7.1,...

7.5CVSS6.9AI score0.02824EPSS
Exploits2References18
OSV
OSV
added 2022/10/03 12:0 a.m.3 views

GHSA-RGV9-Q543-RQG4 Uncontrolled Resource Consumption in FasterXML jackson-databind

In FasterXML jackson-databind before 2.12.7.1 and in 2.13.x before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer.deserializeFromArray to prevent use of deeply nested arrays. This issue can only happen when the UNWRAPSINGLEVALUEARRAYS feature is explicitly...

8.2CVSS6.9AI score0.02656EPSS
Exploits1References12
Rows per page
Query Builder