Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-17267 | 7.5 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup.
|
13-09-2023 - 14:58 | 07-10-2019 - 00:15 | |
CVE-2019-16943 | 6.8 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the p6spy (3.8.6) ja
|
13-09-2023 - 14:55 | 01-10-2019 - 17:15 | |
CVE-2019-16335 | 7.5 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.
|
13-09-2023 - 14:55 | 15-09-2019 - 22:15 | |
CVE-2019-14540 | 7.5 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariConfig.
|
13-09-2023 - 14:54 | 15-09-2019 - 22:15 | |
CVE-2019-17531 | 6.8 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the apache-log4j-ext
|
13-09-2023 - 14:53 | 12-10-2019 - 21:15 | |
CVE-2019-16942 | 7.5 |
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the commons-dbcp (1.
|
08-06-2023 - 18:00 | 01-10-2019 - 17:15 | |
CVE-2019-10173 | 7.5 |
It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshall
|
05-10-2022 - 20:38 | 23-07-2019 - 13:15 | |
CVE-2019-10219 | 4.3 |
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
|
12-09-2022 - 13:51 | 08-11-2019 - 15:15 | |
CVE-2019-16869 | 5.0 |
Netty before 4.1.42.Final mishandles whitespace before the colon in HTTP headers (such as a "Transfer-Encoding : chunked" line), which leads to HTTP request smuggling.
|
30-03-2022 - 14:21 | 26-09-2019 - 16:15 | |
CVE-2019-16869 | 5.0 |
Netty before 4.1.42.Final mishandles whitespace before the colon in HTTP headers (such as a "Transfer-Encoding : chunked" line), which leads to HTTP request smuggling.
|
25-09-2020 - 00:15 | 26-09-2019 - 16:15 |