CVE-2019-12086

 

Published at: - 17-05-2019 07:29

Last modified: - 20-04-2022 02:15

Total changes: - 3

Description

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint, the service has the mysql-connector-java jar (8.0.14 or earlier) in the classpath, and an attacker can host a crafted MySQL server reachable by the victim, an attacker can send a crafted JSON message that allows them to read arbitrary local files on the server. This occurs because of missing com.mysql.cj.jdbc.admin.MiniAdmin validation.

Common Vulnerability Scoring System (CVSS)

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

 

Verification logic

 

Reference

• https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
• https://github.com/FasterXML/jackson-databind/issues/2326
• https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9
• http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/
• [spark-reviews] 20190520 [GitHub] [spark] Fokko opened a new pull request #24646: Spark 27757-Mailing List, Third Party Advisory
• [debian-lts-announce] 20190521 [SECURITY] [DLA 1798-1] jackson-databind security update-Third Party Advisory
• DSA-4452-Third Party Advisory
• 20190527 [SECURITY] [DSA 4452-1] jackson-databind security update-Mailing List, Third Party Advisory
• https://security.netapp.com/advisory/ntap-20190530-0003/
• 109227-Third Party Advisory, VDB Entry
• https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
• FEDORA-2019-99ff6aa32c-
• [cassandra-commits] 20190919 [jira] [Created] (CASSANDRA-15328) Bump jackson version to >= 2.9.9.3 to address security vulnerabilities-
• FEDORA-2019-ae6a703b8f-
• FEDORA-2019-fb23eccc03-
• RHSA-2019:2858-
• RHSA-2019:2937-
• RHSA-2019:2936-
• RHSA-2019:2935-
• RHSA-2019:2938-
• RHSA-2019:2998-
• RHSA-2019:3046-
• RHSA-2019:3045-
• RHSA-2019:3044-
• RHSA-2019:3050-
• https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
• [drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities-
• RHSA-2019:3149-
• [drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-
• [drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-
• RHSA-2019:3200-
• [nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html-
• https://www.oracle.com/security-alerts/cpujan2020.html
• [nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html-
• [lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1-
• N/A-
• https://www.oracle.com/security-alerts/cpujul2020.html
• [nifi-commits] 20200930 svn commit: r1882168 - /nifi/site/trunk/security.html-
• https://www.oracle.com/security-alerts/cpuoct2020.html
• https://www.oracle.com/security-alerts/cpuApr2021.html
• https://www.oracle.com/security-alerts/cpuapr2022.html

 

Keywords

NVD

 

CVE-2019-12086

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures