Fasterxml الثغرات

التسلسل الزمني

النوع

Programming Language Software	68

منتج

FasterXML jackson-databind	65
FasterXML jackson-dataformat-cbor	1
FasterXML Jackson Databind	1
FasterXML Jackson	1

معالجة

Official Fix	61
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	7

قابلية الاستغلال

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	68

متجه الوصول

Not Defined	0
Physical	0
Local	0
Adjacent	13
Network	55

توثيق

Not Defined	0
High	0
Low	20
None	48

تفاعل المستخدم

Not Defined	0
Required	8
None	60

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	1
≤6	10
≤7	12
≤8	10
≤9	23
≤10	10

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	1
≤6	10
≤7	14
≤8	12
≤9	19
≤10	10

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	1
≤6	12
≤7	13
≤8	21
≤9	7
≤10	10

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	1
≤8	8
≤9	14
≤10	26

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	2
≤9	0
≤10	0

المجهز

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

إكسبلويت ذات هجوم فوري

<1k	3
<2k	27
<5k	38
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

إكسبلويت اليوم

<1k	66
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

حجم سوق الإكسبلويت

🔴 CTI النشاطات

Affected Products (4): Jackson (1), Jackson Databind (1), jackson-databind (65), jackson-dataformat-cbor (1)

منشور	Base	Temp	الثغرة	Prod	ق�	معالجة	EPSS	CTI	CVE
14/06/2023	6.5	6.5	FasterXML jackson-databind Cyclic Dependency تجاوز الصلاحيات	Programming Language Software	Not Defined	Not Defined	0.00043	0.07	CVE-2023-35116
27/12/2022	7.2	7.0	FasterXML jackson-databind ignite-jta/quartz-core تجاوز الصلاحيات	Programming Language Software	Not Defined	Official Fix	0.00402	0.03	CVE-2020-10650
02/10/2022	3.5	3.4	FasterXML jackson-databind Array BeanDeserializer._deserializeFromArray الحرمان من الخدمة	Programming Language Software	Not Defined	Official Fix	0.00214	0.04	CVE-2022-42004
02/10/2022	5.5	5.4	FasterXML jackson-databind Deserialize الحرمان من الخدمة	Programming Language Software	Not Defined	Official Fix	0.00205	0.03	CVE-2022-42003
11/03/2022	3.5	3.4	FasterXML jackson-databind Java الحرمان من الخدمة	Programming Language Software	Not Defined	Official Fix	0.00218	0.00	CVE-2020-36518
18/02/2021	5.3	5.1	FasterXML jackson-dataformat-cbor تلف الذاكرة	Programming Language Software	Not Defined	Official Fix	0.00110	0.02	CVE-2020-28491
20/01/2021	6.8	6.5	FasterXML jackson-databind تجاوز الصلاحيات	Programming Language Software	Not Defined	Official Fix	0.00431	0.06	CVE-2021-20190
07/01/2021	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36189
07/01/2021	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36188
07/01/2021	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36187

58 بعض الادخالات لم يتم عرضها

🔒 Login Required

You need to signup and login to see more of the remaining 58 results.

التالي ▸نظرة عامة◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!