|Max CVSS||7.5||Min CVSS||4.3||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
A vulnerability was found in the Undertow HTTP server in versions before 2.0.28.SP1 when listening on HTTPS. An attacker can target the HTTPS port to carry out a Denial Of Service (DOS) to make the service unavailable on SSL.
|01-04-2022 - 15:45||23-01-2020 - 17:15|
A flaw was discovered in FasterXML jackson-databind in all versions before 2.9.10 and 2.10.0, where it would permit polymorphic deserialization of malicious objects using the xalan JNDI gadget when used in conjunction with polymorphic type handling m
|16-03-2021 - 17:29||02-03-2020 - 21:15|
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.
|22-02-2021 - 21:42||15-09-2019 - 22:15|
|08-01-2021 - 12:15||18-01-2018 - 23:29|
A flaw was discovered in jackson-databind in versions before 2.9.10, 18.104.22.168 and 22.214.171.124, where it would permit polymorphic deserialization of a malicious object using commons-configuration 1 and 2 JNDI classes. An attacker could use this flaw to ex
|04-09-2020 - 12:15||02-03-2020 - 17:15|