CVE-2019-12086
Published at:
-
17-05-2019 07:29
Last modified:
-
20-04-2022 02:15
Total changes:
-
3
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
None
Availability
High
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
Verification logic
Reference
- https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
- https://github.com/FasterXML/jackson-databind/issues/2326
- https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9
- http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/
- [spark-reviews] 20190520 [GitHub] [spark] Fokko opened a new pull request #24646: Spark 27757-Mailing List, Third Party Advisory
- [debian-lts-announce] 20190521 [SECURITY] [DLA 1798-1] jackson-databind security update-Third Party Advisory
- DSA-4452-Third Party Advisory
- 20190527 [SECURITY] [DSA 4452-1] jackson-databind security update-Mailing List, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20190530-0003/
- 109227-Third Party Advisory, VDB Entry
- https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
- FEDORA-2019-99ff6aa32c-
- [cassandra-commits] 20190919 [jira] [Created] (CASSANDRA-15328) Bump jackson version to >= 2.9.9.3 to address security vulnerabilities-
- FEDORA-2019-ae6a703b8f-
- FEDORA-2019-fb23eccc03-
- RHSA-2019:2858-
- RHSA-2019:2937-
- RHSA-2019:2936-
- RHSA-2019:2935-
- RHSA-2019:2938-
- RHSA-2019:2998-
- RHSA-2019:3046-
- RHSA-2019:3045-
- RHSA-2019:3044-
- RHSA-2019:3050-
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
- [drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities-
- RHSA-2019:3149-
- [drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-
- [drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-
- RHSA-2019:3200-
- [nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html-
- https://www.oracle.com/security-alerts/cpujan2020.html
- [nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html-
- [lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1-
- N/A-
- https://www.oracle.com/security-alerts/cpujul2020.html
- [nifi-commits] 20200930 svn commit: r1882168 - /nifi/site/trunk/security.html-
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
Keywords