exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2018-5968

около 8 лет назад

FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.

CVSS3: 8.1

EPSS: Низкий

CVE-2018-5968

около 8 лет назад

FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.

CVSS3: 8.1

EPSS: Низкий

CVE-2018-5968

около 8 лет назад

FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.

CVSS3: 8.1

EPSS: Низкий

CVE-2018-5968

около 8 лет назад

FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allo ...

CVSS3: 8.1

EPSS: Низкий

GHSA-w3f4-3q6j-rh82

больше 5 лет назад

Deserialization of Untrusted Data in jackson-databind

CVSS3: 8.1

EPSS: Низкий

BDU:2019-04797

около 8 лет назад

Уязвимость библиотеки Jackson-databind, связанная с недостатками механизма десериализации, позволяющая нарушителю выполнить произвольный код

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-5968 FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.	CVSS3: 8.1	2% Низкий	около 8 лет назад
CVE-2018-5968 FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.	CVSS3: 8.1	2% Низкий	около 8 лет назад
CVE-2018-5968 FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets that bypass a blacklist.	CVSS3: 8.1	2% Низкий	около 8 лет назад
CVE-2018-5968 FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allo ...	CVSS3: 8.1	2% Низкий	около 8 лет назад
GHSA-w3f4-3q6j-rh82 Deserialization of Untrusted Data in jackson-databind	CVSS3: 8.1	2% Низкий	больше 5 лет назад
BDU:2019-04797 Уязвимость библиотеки Jackson-databind, связанная с недостатками механизма десериализации, позволяющая нарушителю выполнить произвольный код	CVSS3: 8.1	2% Низкий	около 8 лет назад

Уязвимостей на страницу