Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:6822
HistoryJun 19, 2018 - 9:04 a.m.

Remote Code Execution (RCE)

2018-06-1909:04:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

EPSS

0.009

Percentile

82.7%

jackson-databind is vulnerable to remote code execution (RCE) attacks. The vulnerability exists because it does not prevent the deserialization of certain gadget types from the JDBC driver which could be used to perform remote code execution attacks through deserialization.

References