CRITICAL10.0CVE-2018-14721Server-Side Request Forgery (SSRF) in jackson-databind >= 2.9.0, < 2.9.7
>= 2.9.0, < 2.9.10
CRITICAL9.8CVE-2020-9547jackson-databind mishandles the interaction between serialization gadgets and typing >= 2.9.0, < 2.9.10.4
CRITICAL9.8Polymorphic deserialization of malicious object in jackson-databind
>= 2.9.0, < 2.9.10
CRITICAL9.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
CRITICAL9.8jackson-databind - security update
>= 2.9.0, < 2.9.10.4
CRITICAL9.8Deserialization of Untrusted Data in jackson-databind
>= 2.0.0, < 2.6.7.4
CRITICAL9.8jackson-databind - security update
>= 2.0.0, < 2.6.7.4
CRITICAL9.8jackson-databind polymorphic typing issue
>= 2.9.0, < 2.9.10.1
CRITICAL9.8jackson-databind polymorphic typing issue
>= 2.9.0, < 2.9.10.1
CRITICAL9.8Polymorphic Typing in FasterXML jackson-databind
>= 2.9.0, < 2.9.10.1
CRITICAL9.8Polymorphic Typing issue in FasterXML jackson-databind
>= 2.9.0, < 2.9.10
CRITICAL9.8jackson-databind - security update
>= 2.9.0, < 2.9.10
CRITICAL9.8jackson-databind - security update
>= 2.9.0, < 2.9.9.2
CRITICAL9.8jackson-databind - security update
>= 2.0.0, < 2.7.9.4
CRITICAL9.8Arbitrary Code Execution in jackson-databind
>= 2.9.0, < 2.9.7
CRITICAL9.8XML External Entity Reference (XXE) in jackson-databind
>= 2.9.0, < 2.9.7
CRITICAL9.8com.fasterxml.jackson.core:jackson-databind vulnerable to Deserialization of Untrusted Data
>= 2.9.0, < 2.9.8
CRITICAL9.8Deserialization of Untrusted Data in jackson-databind
>= 2.7.0, < 2.7.9.5
CRITICAL9.8Deserialization of Untrusted Data in jackson-databind due to polymorphic deserialization
>= 2.9.0, < 2.9.8
CRITICAL9.8Arbitrary Code Execution in jackson-databind
>= 2.9.0, < 2.9.7
CRITICAL9.8jackson-databind - security update
>= 2.9.0, < 2.9.4
CRITICAL9.8jackson-databind - security update
>= 2.8.0, < 2.8.11
CRITICAL9.8jackson-databind - security update
>= 2.8.0, < 2.8.11.1
CRITICAL9.8jackson-databind - security update
from 0, < 2.6.7.1
HIGH8.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH8.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.7.0, < 2.9.10.4
HIGH8.8jackson-databind - security update
>= 2.9.0, < 2.9.10.4
HIGH8.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH8.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH8.8jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH8.8jackson-databind - security update
>= 2.9.0, < 2.9.10.4
HIGH8.1jackson-databind - security update
from 0, < 2.9.10.4
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.00, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.7.0, < 2.9.10.8
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.0, < 2.6.7.5
HIGH8.1Serialization gadget exploit in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Serialization gadgets exploit in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Serialization gadgets exploit in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1jackson-databind - security update
>= 2.0.0, < 2.9.10.6
HIGH8.1Unsafe Deserialization in jackson-databind
>= 2.0.0, < 2.9.10.8
HIGH8.1Deserialization of untrusted data in jackson-databind
>= 2.7.0, < 2.9.10.7
HIGH8.1Deserialization of Untrusted Data in jackson-databind
>= 2.8.0, < 2.8.11.1
HIGH8.1Deserialization of untrusted data in Jackson Databind
>= 2.9.0, < 2.9.10.5
HIGH8.1Deserialization of untrusted data in Jackson Databind
>= 2.9.0, < 2.9.10.5
HIGH8.1jackson-databind - security update
>= 2.9.0, < 2.9.10.5
HIGH8.1Deserialization of untrusted data in Jackson Databind
>= 2.9.0, < 2.9.10.5
HIGH8.1jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH8.1jackson-databind mishandles the interaction between serialization gadgets and typing
>= 2.9.0, < 2.9.10.4
HIGH7.5jackson-databind possible Denial of Service if using JDK serialization to serialize JsonNode
>= 2.10.0, < 2.12.6
HIGH7.5Uncontrolled Resource Consumption in FasterXML jackson-databind
>= 2.4.0-rc1, < 2.12.7.1
HIGH7.5Uncontrolled Resource Consumption in Jackson-databind
>= 2.4.0-rc1, < 2.12.7.1
HIGH7.5jackson-databind - security update
>= 2.13.0, < 2.13.2.1
HIGH7.5jackson-databind - security update
>= 2.6.0, < 2.6.7.4
HIGH7.5Deserialization of Untrusted Data
>= 2.7.0, < 2.7.9.4
HIGH7.5Polymorphic deserialization of malicious object in jackson-databind
from 0, < 2.6.7.3
HIGH7.5Deserialization of untrusted data in FasterXML jackson-databind
>= 2.9.0, < 2.9.9.2
HIGH7.5jackson-databind - security update
>= 2.9.0, < 2.9.9
HIGH7.5jackson-databind Deserialization of Untrusted Data vulnerability
from 0, < 2.7.9.4
MEDIUM5.9Deserialization of untrusted data in FasterXML jackson-databind
>= 2.9.0, < 2.9.9.1
MEDIUM5.9jackson-databind - security update
>= 2.9.0, < 2.9.9.1