admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-12-15 12:22:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2017/7xxx/CVE-2017-7525.json
CVE Team 0716cc42c5
- Synchronized data.
2018-02-23 06:04:12 -05:00

158 lines
4.6 KiB
JSON
Raw Blame History

{
"CVE_data_meta" : {
"ASSIGNER" : "secalert@redhat.com",
"DATE_PUBLIC" : "2017-04-11T00:00:00",
"ID" : "CVE-2017-7525",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "jackson-databind",
"version" : {
"version_data" : [
{
"version_value" : "before 2.6.7.1"
},
{
"version_value" : "before 2.7.9.1"
},
{
"version_value" : "before 2.8.9"
}
]
}
}
]
},
"vendor_name" : "FasterXML"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "CWE-184"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://github.com/FasterXML/jackson-databind/issues/1599"
},
{
"url" : "https://github.com/FasterXML/jackson-databind/issues/1723"
},
{
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1462702"
},
{
"url" : "https://security.netapp.com/advisory/ntap-20171214-0002/"
},
{
"url" : "https://cwiki.apache.org/confluence/display/WW/S2-055"
},
{
"url" : "https://www.debian.org/security/2017/dsa-4004"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1834"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1835"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1836"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1837"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1839"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:1840"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2477"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2546"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2547"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2633"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2635"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2636"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2637"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:2638"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:3141"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:3454"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:3455"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:3456"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2017:3458"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2018:0294"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2018:0342"
},
{
"url" : "http://www.securityfocus.com/bid/99623"
},
{
"url" : "http://www.securitytracker.com/id/1039744"
},
{
"url" : "http://www.securitytracker.com/id/1039947"
},
{
"url" : "http://www.securitytracker.com/id/1040360"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink