Lucene search
CVE-2020-36187
FasterXML jackson-databind 2.x before 2.9.10.8 mishandles serialization gadgets and typing
Show more
| Reporter | Title | Published | Views | Family All 53 |
|---|---|---|---|---|
 | CVE-2020-36187 | 7 Jan 202120:15 | – | redhatcve |
 | Design/Logic Flaw | 6 Jan 202123:15 | – | prion |
 | Arbitrary Code Execution | 8 Jan 202105:55 | – | veracode |
 | GHSA-R695-7VR9-JGC2 Unsafe Deserialization in jackson-databind | 9 Dec 202119:16 | – | osv |
| CVE-2020-36187 | 6 Jan 202123:15 | – | osv |
| DLA-2638-1 jackson-databind - security update | 25 Apr 202100:00 | – | osv |
 | CVE-2020-36187 | 6 Jan 202123:15 | – | debiancve |
 | CVE-2020-36187 | 6 Jan 202123:15 | – | nvd |
 | Unsafe Deserialization in jackson-databind | 9 Dec 202119:16 | – | github |
 | CVE-2020-36187 | 6 Jan 202122:29 | – | cvelist |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 24.10 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 24.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 22.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 20.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 18.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 16.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 24.10 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 24.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 22.04 | noarch | jackson-databind | any | UNKNOWN |
| ubuntu | 20.04 | noarch | jackson-databind | any | UNKNOWN |
10
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo06 Jan 2021 00:00Current
8.1High risk
Vulners AI Score8.1
CVSS26.8
CVSS38.1
EPSS0.02039