ID CVE-2018-12022
Summary An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either globally or for a specific property), the service has the Jodd-db jar (for database access for the Jodd framework) in the classpath, and an attacker can provide an LDAP service to access, it is possible to make the service execute a malicious payload.
References
Vulnerable Configurations
  • FasterXML Jackson-databind 2.7.0
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0
  • FasterXML Jackson-databind 2.7.0 Release Candidate 1
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc1
  • FasterXML Jackson-databind 2.7.0 Release Candidate 2
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc2
  • FasterXML Jackson-databind 2.7.0 Release Candidate 3
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc3
  • FasterXML Jackson-databind 2.7.1
    cpe:2.3:a:fasterxml:jackson-databind:2.7.1
  • FasterXML Jackson-databind 2.7.1-1
    cpe:2.3:a:fasterxml:jackson-databind:2.7.1-1
  • FasterXML Jackson-databind 2.7.2
    cpe:2.3:a:fasterxml:jackson-databind:2.7.2
  • FasterXML Jackson-databind 2.7.3
    cpe:2.3:a:fasterxml:jackson-databind:2.7.3
  • FasterXML Jackson-databind 2.7.4
    cpe:2.3:a:fasterxml:jackson-databind:2.7.4
  • FasterXML Jackson-databind 2.7.5
    cpe:2.3:a:fasterxml:jackson-databind:2.7.5
  • FasterXML Jackson-databind 2.7.6
    cpe:2.3:a:fasterxml:jackson-databind:2.7.6
  • FasterXML Jackson-databind 2.7.7
    cpe:2.3:a:fasterxml:jackson-databind:2.7.7
  • FasterXML Jackson-databind 2.7.8
    cpe:2.3:a:fasterxml:jackson-databind:2.7.8
  • FasterXML Jackson-databind 2.7.9
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9
  • FasterXML Jackson-databind 2.7.9.1
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.1
  • FasterXML Jackson-databind 2.7.9.2
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.2
  • FasterXML Jackson-databind 2.7.9.3
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.3
  • FasterXML Jackson-databind 2.8.0
    cpe:2.3:a:fasterxml:jackson-databind:2.8.0
  • FasterXML Jackson-databind 2.8.1
    cpe:2.3:a:fasterxml:jackson-databind:2.8.1
  • FasterXML Jackson-databind 2.8.2
    cpe:2.3:a:fasterxml:jackson-databind:2.8.2
  • FasterXML Jackson-databind 2.8.3
    cpe:2.3:a:fasterxml:jackson-databind:2.8.3
  • FasterXML Jackson-databind 2.8.4
    cpe:2.3:a:fasterxml:jackson-databind:2.8.4
  • FasterXML Jackson-databind 2.8.5
    cpe:2.3:a:fasterxml:jackson-databind:2.8.5
  • FasterXML Jackson-databind 2.8.6
    cpe:2.3:a:fasterxml:jackson-databind:2.8.6
  • FasterXML Jackson-databind 2.8.7
    cpe:2.3:a:fasterxml:jackson-databind:2.8.7
  • FasterXML Jackson-databind 2.8.8
    cpe:2.3:a:fasterxml:jackson-databind:2.8.8
  • FasterXML Jackson-databind 2.8.8.1
    cpe:2.3:a:fasterxml:jackson-databind:2.8.8.1
  • FasterXML Jackson-databind 2.8.9
    cpe:2.3:a:fasterxml:jackson-databind:2.8.9
  • FasterXML Jackson-databind 2.8.10
    cpe:2.3:a:fasterxml:jackson-databind:2.8.10
  • FasterXML Jackson-Databind 2.8.11
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11
  • FasterXML Jackson-databind 2.8.11.1
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11.1
  • FasterXML Jackson-databind 2.9.0
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0
  • FasterXML Jackson-Databind 2.9.1
    cpe:2.3:a:fasterxml:jackson-databind:2.9.1
  • FasterXML Jackson-Databind 2.9.2
    cpe:2.3:a:fasterxml:jackson-databind:2.9.2
  • FasterXML Jackson-Databind 2.9.3
    cpe:2.3:a:fasterxml:jackson-databind:2.9.3
  • FasterXML Jackson-databind 2.9.4
    cpe:2.3:a:fasterxml:jackson-databind:2.9.4
  • FasterXML Jackson-databind 2.9.5
    cpe:2.3:a:fasterxml:jackson-databind:2.9.5
  • Fedora 29
    cpe:2.3:o:fedoraproject:fedora:29
  • Oracle JD Edwards EnterpriseOne Tools 9.2
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2
  • Oracle Retail Merchandising System 15.0
    cpe:2.3:a:oracle:retail_merchandising_system:15.0
CVSS
Base: 5.1
Impact:
Exploitability:
CWE CWE-502
CAPEC
nessus via4
NASL family Fedora Local Security Checks
NASL id FEDORA_2019-DF57551F6D.NASL
description Fixes CVE-2018-14718 CVE-2018-14719 CVE-2018-19360 CVE-2018-19361 CVE-2018-19362 CVE-2018-12022 CVE-2018-12023 CVE-2018-14720 CVE-2018-14721 and CVE-2016-7051. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen 2019-02-21
modified 2019-02-19
plugin id 122290
published 2019-02-19
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=122290
title Fedora 29 : bouncycastle / eclipse-jgit / eclipse-linuxtools / etc (2019-df57551f6d)
redhat via4
advisories
  • rhsa
    id RHBA-2019:0959
  • rhsa
    id RHSA-2019:0782
  • rhsa
    id RHSA-2019:0877
  • rhsa
    id RHSA-2019:1106
  • rhsa
    id RHSA-2019:1107
  • rhsa
    id RHSA-2019:1108
  • rhsa
    id RHSA-2019:1140
refmap via4
bugtraq 20190527 [SECURITY] [DSA 4452-1] jackson-databind security update
confirm
debian DSA-4452
misc
Last major update 21-03-2019 - 12:00
Published 21-03-2019 - 12:00
Last modified 30-05-2019 - 04:29
Back to Top