Fasterxml Vulnerabilidad

Cronología

Escribe

Programming Language Software	68

Producto

FasterXML jackson-databind	65
FasterXML jackson-dataformat-cbor	1
FasterXML Jackson Databind	1
FasterXML Jackson	1

Contramedidas

Official Fix	61
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	7

Explotabilidad

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	68

Vector de acceso

Not Defined	0
Physical	0
Local	0
Adjacent	13
Network	55

Autenticación

Not Defined	0
High	0
Low	20
None	48

La interacción del usuario

Not Defined	0
Required	8
None	60

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	1
≤6	10
≤7	12
≤8	10
≤9	23
≤10	10

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	1
≤6	10
≤7	14
≤8	12
≤9	19
≤10	10

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	1
≤6	12
≤7	13
≤8	21
≤9	7
≤10	10

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	1
≤8	8
≤9	14
≤10	26

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	2
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	3
<2k	31
<5k	34
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	66
<2k	2
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (4): Jackson (1), Jackson Databind (1), jackson-databind (65), jackson-dataformat-cbor (1)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2023-06-14	6.5	6.5	FasterXML jackson-databind Cyclic Dependency escalada de privilegios	Programming Language Software	Not Defined	Not Defined	0.00043	0.00	CVE-2023-35116
2022-12-27	7.2	7.0	FasterXML jackson-databind ignite-jta/quartz-core escalada de privilegios	Programming Language Software	Not Defined	Official Fix	0.00402	0.03	CVE-2020-10650
2022-10-02	3.5	3.4	FasterXML jackson-databind Array BeanDeserializer._deserializeFromArray denegación de servicio	Programming Language Software	Not Defined	Official Fix	0.00243	0.00	CVE-2022-42004
2022-10-02	5.5	5.4	FasterXML jackson-databind Deserialize denegación de servicio	Programming Language Software	Not Defined	Official Fix	0.00233	0.03	CVE-2022-42003
2022-03-11	3.5	3.4	FasterXML jackson-databind Java denegación de servicio	Programming Language Software	Not Defined	Official Fix	0.00218	0.00	CVE-2020-36518
2021-02-18	5.3	5.1	FasterXML jackson-dataformat-cbor desbordamiento de búfer	Programming Language Software	Not Defined	Official Fix	0.00110	0.02	CVE-2020-28491
2021-01-20	6.8	6.5	FasterXML jackson-databind escalada de privilegios	Programming Language Software	Not Defined	Official Fix	0.00431	0.04	CVE-2021-20190
2021-01-07	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36189
2021-01-07	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36188
2021-01-07	6.3	6.3	FasterXML jackson-databind Privilege Escalation	Programming Language Software	Not Defined	Official Fix	0.00262	0.00	CVE-2020-36187

58 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 58 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!