ID CVE-2019-20330
Summary FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.
References
Vulnerable Configurations
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.0:-:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:-:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc3:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc3:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.1-1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.1-1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.5:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.6:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.7:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.7:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.8:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.8:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.7.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.7.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.5:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.7:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.7:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.8:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.8:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.9:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.9:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.10:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.10:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.11:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.11.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.11.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.8.11.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.8.11.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:-:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:-:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease1:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease1:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease2:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease2:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease3:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease3:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease4:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease4:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.7:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.7:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:fasterxml:jackson-databind:2.9.10.1:*:*:*:*:*:*:*
    cpe:2.3:a:fasterxml:jackson-databind:2.9.10.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_platform:2.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_platform:2.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_contacts_server:8.0.0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_contacts_server:8.0.0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:customer_management_and_segmentation_foundation:18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:customer_management_and_segmentation_foundation:18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:17.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:17.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:global_lifecycle_management_opatch:*:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:global_lifecycle_management_opatch:*:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:global_lifecycle_management_opatch:12.2.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:global_lifecycle_management_opatch:12.2.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:global_lifecycle_management_opatch:13.9.4.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:global_lifecycle_management_opatch:13.9.4.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_engineering_-_installer_\&_deployment:2.20.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_engineering_-_installer_\&_deployment:2.20.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_sales_audit:14.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_sales_audit:14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_merchandising_system:15.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_merchandising_system:15.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_merchandising_system:16.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_merchandising_system:16.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:goldengate_application_adapters:19.1.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:goldengate_application_adapters:19.1.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:goldengate_stream_analytics:-:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:goldengate_stream_analytics:-:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:-:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:-:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:trace_file_analyzer:19c:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:trace_file_analyzer:19c:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:trace_file_analyzer:18c:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:trace_file_analyzer:18c:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:trace_file_analyzer:12.2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:trace_file_analyzer:12.2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:8.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:8.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:8.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:8.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:16.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:16.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:17.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.5:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:linux:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:linux:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:linux:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:linux:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:windows:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:7.3:*:*:*:*:windows:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:windows:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:windows:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:windows:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.6:*:*:*:*:windows:*:*
  • cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:vmware_vsphere:*:*
    cpe:2.3:a:netapp:active_iq_unified_manager:9.5:*:*:*:*:vmware_vsphere:*:*
  • cpe:2.3:a:netapp:oncommand_api_services:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:oncommand_api_services:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:service_level_manager:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:service_level_manager:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
  • cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 20-07-2021 - 23:15)
Impact:
Exploitability:
CWE CWE-502
CAPEC
  • Object Injection
    An adversary attempts to exploit an application by injecting additional, malicious content during its processing of serialized objects. Developers leverage serialization in order to convert data or state into a static, binary format for saving to disk or transferring over a network. These objects are then deserialized when needed to recover the data/state. By injecting a malformed object into a vulnerable application, an adversary can potentially compromise the application by manipulating the deserialization process. This can result in a number of unwanted outcomes, including remote code execution.
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat via4
rpms
  • candlepin-0:2.6.16-1.el7sat
  • candlepin-selinux-0:2.6.16-1.el7sat
  • foreman-0:1.22.0.39-2.el7sat
  • foreman-cli-0:1.22.0.39-2.el7sat
  • foreman-debug-0:1.22.0.39-2.el7sat
  • foreman-ec2-0:1.22.0.39-2.el7sat
  • foreman-gce-0:1.22.0.39-2.el7sat
  • foreman-journald-0:1.22.0.39-2.el7sat
  • foreman-libvirt-0:1.22.0.39-2.el7sat
  • foreman-openstack-0:1.22.0.39-2.el7sat
  • foreman-ovirt-0:1.22.0.39-2.el7sat
  • foreman-postgresql-0:1.22.0.39-2.el7sat
  • foreman-rackspace-0:1.22.0.39-2.el7sat
  • foreman-telemetry-0:1.22.0.39-2.el7sat
  • foreman-vmware-0:1.22.0.39-2.el7sat
  • satellite-0:6.6.3-1.el7sat
  • satellite-capsule-0:6.6.3-1.el7sat
  • satellite-cli-0:6.6.3-1.el7sat
  • satellite-common-0:6.6.3-1.el7sat
  • satellite-debug-tools-0:6.6.3-1.el7sat
  • tfm-rubygem-fog-ovirt-0:1.2.3-1.el7sat
  • tfm-rubygem-foreman_rh_cloud-0:0.9.4.1-2.el7sat
  • tfm-rubygem-katello-0:3.12.0.41-1.el7sat
  • tfm-rubygem-runcible-0:2.13.0-1.el7sat
  • candlepin-0:2.9.28-1.el7sat
  • candlepin-selinux-0:2.9.28-1.el7sat
  • foreman-0:1.24.1.24-1.el7sat
  • foreman-cli-0:1.24.1.24-1.el7sat
  • foreman-debug-0:1.24.1.24-1.el7sat
  • foreman-ec2-0:1.24.1.24-1.el7sat
  • foreman-gce-0:1.24.1.24-1.el7sat
  • foreman-installer-1:1.24.1.21-1.el7sat
  • foreman-installer-katello-1:1.24.1.21-1.el7sat
  • foreman-journald-0:1.24.1.24-1.el7sat
  • foreman-libvirt-0:1.24.1.24-1.el7sat
  • foreman-openstack-0:1.24.1.24-1.el7sat
  • foreman-ovirt-0:1.24.1.24-1.el7sat
  • foreman-postgresql-0:1.24.1.24-1.el7sat
  • foreman-rackspace-0:1.24.1.24-1.el7sat
  • foreman-telemetry-0:1.24.1.24-1.el7sat
  • foreman-vmware-0:1.24.1.24-1.el7sat
  • pulp-rpm-admin-extensions-0:2.21.0.6-1.el7sat
  • pulp-rpm-plugins-0:2.21.0.6-1.el7sat
  • python-pulp-integrity-0:2.21.0.6-1.el7sat
  • python-pulp-rpm-common-0:2.21.0.6-1.el7sat
  • satellite-0:6.7.2-1.el7sat
  • satellite-capsule-0:6.7.2-1.el7sat
  • satellite-cli-0:6.7.2-1.el7sat
  • satellite-common-0:6.7.2-1.el7sat
  • satellite-debug-tools-0:6.7.2-1.el7sat
  • tfm-rubygem-fog-vsphere-0:3.2.1.1-1.el7sat
  • tfm-rubygem-foreman-tasks-0:0.17.5.6-1.el7sat
  • tfm-rubygem-foreman_remote_execution-0:2.0.10.1-1.el7sat
  • tfm-rubygem-foreman_remote_execution-cockpit-0:2.0.10.1-1.el7sat
  • tfm-rubygem-foreman_rh_cloud-0:1.0.9-1.el7sat
  • tfm-rubygem-hammer_cli_foreman-0:0.19.6.5-1.el7sat
  • tfm-rubygem-katello-0:3.14.0.25-1.el7sat
refmap via4
confirm https://security.netapp.com/advisory/ntap-20200127-0004/
misc
mlist
  • [bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image
  • [debian-lts-announce] 20200220 [SECURITY] [DLA 2111-1] jackson-databind security update
  • [druid-commits] 20200114 [GitHub] [druid] ccaominh opened a new pull request #9189: Suppress CVE-2019-20330 for htrace-core-4.0.1
  • [druid-commits] 20200115 [GitHub] [druid] ccaominh opened a new pull request #9191: [Backport] Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189)
  • [druid-commits] 20200115 [GitHub] [druid] clintropolis merged pull request #9189: Suppress CVE-2019-20330 for htrace-core-4.0.1
  • [druid-commits] 20200115 [GitHub] [druid] clintropolis merged pull request #9191: [Backport] Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189)
  • [druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)
  • [geode-issues] 20200831 [jira] [Created] (GEODE-8471) Dependency security issues in geode-core-1.12
  • [zookeeper-commits] 20200123 [zookeeper] branch branch-3.5 updated: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-commits] 20200123 [zookeeper] branch branch-3.6 updated: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-commits] 20200123 [zookeeper] branch master updated: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-dev] 20200118 Build failed in Jenkins: zookeeper-master-maven-owasp #329
  • [zookeeper-dev] 20200118 [jira] [Created] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-dev] 20200122 Re: 3.5.7
  • [zookeeper-issues] 20200118 [jira] [Commented] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200118 [jira] [Created] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200122 [jira] [Assigned] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200122 [jira] [Commented] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200122 [jira] [Updated] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200123 [jira] [Commented] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200123 [jira] [Resolved] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-issues] 20200123 [jira] [Updated] (ZOOKEEPER-3699) upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-notifications] 20200122 [GitHub] [zookeeper] phunt commented on issue #1232: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-notifications] 20200122 [GitHub] [zookeeper] phunt opened a new pull request #1232: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-notifications] 20200123 [GitHub] [zookeeper] asfgit closed pull request #1232: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
  • [zookeeper-notifications] 20200123 [GitHub] [zookeeper] nkalmar commented on issue #1232: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330
Last major update 20-07-2021 - 23:15
Published 03-01-2020 - 04:15
Last modified 20-07-2021 - 23:15
Back to Top