Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-8ns6-kacn-dkeg
Summary
Unsafe Deserialization in jackson-databind
FasterXML jackson-databind 2.x before 2.9.10.8 an 2.6.7.5 mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource.
Aliases
0
alias CVE-2020-36189
1
alias GHSA-vfqx-33qm-g869
Fixed_packages
0
url pkg:deb/debian/jackson-databind@2.12.1-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.12.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%3Fdistro=trixie
1
url pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2cup-9gdn-yyhk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1
purl pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2cup-9gdn-yyhk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%252Bdeb11u1
3
url pkg:deb/debian/jackson-databind@2.14.0-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.14.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.14.0-1%3Fdistro=trixie
4
url pkg:deb/debian/jackson-databind@2.14.0%2Bds-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.14.0%2Bds-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.14.0%252Bds-1%3Fdistro=trixie
5
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-5r6v-ej7d-ubgv
2
vulnerability VCID-6zee-aqcc-vfbp
3
vulnerability VCID-8h7y-y4pv-cyd3
4
vulnerability VCID-8jw8-6tev-aqgm
5
vulnerability VCID-8tmq-zbmb-m7h4
6
vulnerability VCID-96pq-m4f3-zbad
7
vulnerability VCID-9h46-72hw-bkcr
8
vulnerability VCID-avut-gmwd-jqfp
9
vulnerability VCID-bypv-wfhs-sbe4
10
vulnerability VCID-ceub-d4s9-dkcd
11
vulnerability VCID-cytp-mr4h-g3ds
12
vulnerability VCID-hwnx-vf4v-f3db
13
vulnerability VCID-jcgb-bewy-4kff
14
vulnerability VCID-jx9y-fyfm-bqdr
15
vulnerability VCID-svkb-adja-qfef
16
vulnerability VCID-swqd-uk56-wkat
17
vulnerability VCID-tm7y-tnx3-43dq
18
vulnerability VCID-ukwd-7rkh-sfhj
19
vulnerability VCID-unwq-s63h-uuaw
20
vulnerability VCID-v2pq-1qhm-4qb9
21
vulnerability VCID-v6ek-y7cn-kycd
22
vulnerability VCID-wds4-urpb-euby
23
vulnerability VCID-x6g1-qw1v-jbas
24
vulnerability VCID-ypbt-p34k-hfbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
6
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9h46-72hw-bkcr
1
vulnerability VCID-v2pq-1qhm-4qb9
2
vulnerability VCID-v6ek-y7cn-kycd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
Affected_packages
0
url pkg:deb/debian/jackson-databind@2.4.2-2
purl pkg:deb/debian/jackson-databind@2.4.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.4.2-2
1
url pkg:deb/debian/jackson-databind@2.4.2-2%2Bdeb8u4
purl pkg:deb/debian/jackson-databind@2.4.2-2%2Bdeb8u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.4.2-2%252Bdeb8u4
2
url pkg:deb/debian/jackson-databind@2.8.6-1%2Bdeb9u7
purl pkg:deb/debian/jackson-databind@2.8.6-1%2Bdeb9u7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.8.6-1%252Bdeb9u7
3
url pkg:deb/debian/jackson-databind@2.9.8-3%2Bdeb10u3
purl pkg:deb/debian/jackson-databind@2.9.8-3%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-3qjf-azsa-fbek
3
vulnerability VCID-3wa1-khqf-x7fv
4
vulnerability VCID-4an1-3hs5-3yd6
5
vulnerability VCID-4vx2-s262-ckbp
6
vulnerability VCID-5qfd-jjh1-d3fx
7
vulnerability VCID-5te6-415m-c7df
8
vulnerability VCID-6xn4-4gfc-tbgj
9
vulnerability VCID-7qga-wsz6-kqcn
10
vulnerability VCID-8h7y-y4pv-cyd3
11
vulnerability VCID-8ns6-kacn-dkeg
12
vulnerability VCID-8tmq-zbmb-m7h4
13
vulnerability VCID-96pq-m4f3-zbad
14
vulnerability VCID-9h46-72hw-bkcr
15
vulnerability VCID-9qdt-7p83-4yd8
16
vulnerability VCID-a5sk-5grx-eyaf
17
vulnerability VCID-avut-gmwd-jqfp
18
vulnerability VCID-bydt-bkf4-rbh2
19
vulnerability VCID-bypv-wfhs-sbe4
20
vulnerability VCID-cytp-mr4h-g3ds
21
vulnerability VCID-ec58-s3nd-7yaz
22
vulnerability VCID-gtzx-y5f1-vye3
23
vulnerability VCID-hwnx-vf4v-f3db
24
vulnerability VCID-jcgb-bewy-4kff
25
vulnerability VCID-jvp6-892x-nkc7
26
vulnerability VCID-jx9y-fyfm-bqdr
27
vulnerability VCID-pnt3-1ssq-tqau
28
vulnerability VCID-ruae-hqdg-m7ek
29
vulnerability VCID-svkb-adja-qfef
30
vulnerability VCID-swqd-uk56-wkat
31
vulnerability VCID-tkej-jh51-s7g5
32
vulnerability VCID-tm7y-tnx3-43dq
33
vulnerability VCID-twvp-wxff-zka2
34
vulnerability VCID-u87p-2xgz-e3fj
35
vulnerability VCID-uhnv-3cny-qkgx
36
vulnerability VCID-ukwd-7rkh-sfhj
37
vulnerability VCID-uygc-h93v-vuh8
38
vulnerability VCID-v2pq-1qhm-4qb9
39
vulnerability VCID-v6ek-y7cn-kycd
40
vulnerability VCID-w51e-ntqd-8bbg
41
vulnerability VCID-wdgx-34uc-2qa4
42
vulnerability VCID-wds4-urpb-euby
43
vulnerability VCID-wg36-q48g-mkds
44
vulnerability VCID-x4fr-ena4-47fe
45
vulnerability VCID-x8c2-2u1w-yyfn
46
vulnerability VCID-xnyb-nuwm-pkdr
47
vulnerability VCID-yp37-9z2d-akaj
48
vulnerability VCID-ypbt-p34k-hfbc
49
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.9.8-3%252Bdeb10u3
4
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2ev8-r6cx-a3an
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-4vx2-s262-ckbp
4
vulnerability VCID-56sb-829v-6qbz
5
vulnerability VCID-5qfd-jjh1-d3fx
6
vulnerability VCID-5r6v-ej7d-ubgv
7
vulnerability VCID-5te6-415m-c7df
8
vulnerability VCID-6xn4-4gfc-tbgj
9
vulnerability VCID-6zee-aqcc-vfbp
10
vulnerability VCID-75mz-c1ds-vqed
11
vulnerability VCID-7qga-wsz6-kqcn
12
vulnerability VCID-8h7y-y4pv-cyd3
13
vulnerability VCID-8jw8-6tev-aqgm
14
vulnerability VCID-8ns6-kacn-dkeg
15
vulnerability VCID-8tmq-zbmb-m7h4
16
vulnerability VCID-96pq-m4f3-zbad
17
vulnerability VCID-9h46-72hw-bkcr
18
vulnerability VCID-9qdt-7p83-4yd8
19
vulnerability VCID-9wej-f7zx-pfeq
20
vulnerability VCID-avut-gmwd-jqfp
21
vulnerability VCID-bydt-bkf4-rbh2
22
vulnerability VCID-bypv-wfhs-sbe4
23
vulnerability VCID-ceub-d4s9-dkcd
24
vulnerability VCID-cytp-mr4h-g3ds
25
vulnerability VCID-ec58-s3nd-7yaz
26
vulnerability VCID-fafy-ugq3-cfbn
27
vulnerability VCID-g6up-yqg8-nbep
28
vulnerability VCID-g8gt-d7gz-13e6
29
vulnerability VCID-gtzx-y5f1-vye3
30
vulnerability VCID-hwnx-vf4v-f3db
31
vulnerability VCID-jcgb-bewy-4kff
32
vulnerability VCID-jx9y-fyfm-bqdr
33
vulnerability VCID-m7jp-7n22-4qg8
34
vulnerability VCID-svkb-adja-qfef
35
vulnerability VCID-sw29-epz3-g7ep
36
vulnerability VCID-swqd-uk56-wkat
37
vulnerability VCID-tm7y-tnx3-43dq
38
vulnerability VCID-u87p-2xgz-e3fj
39
vulnerability VCID-uhnv-3cny-qkgx
40
vulnerability VCID-ukwd-7rkh-sfhj
41
vulnerability VCID-unwq-s63h-uuaw
42
vulnerability VCID-v2pq-1qhm-4qb9
43
vulnerability VCID-v6ek-y7cn-kycd
44
vulnerability VCID-v84e-sf92-dqa1
45
vulnerability VCID-wds4-urpb-euby
46
vulnerability VCID-x6g1-qw1v-jbas
47
vulnerability VCID-x8c2-2u1w-yyfn
48
vulnerability VCID-xnyb-nuwm-pkdr
49
vulnerability VCID-ygs8-4gxq-kygq
50
vulnerability VCID-yp37-9z2d-akaj
51
vulnerability VCID-ypbt-p34k-hfbc
52
vulnerability VCID-zdwv-ycey-myfc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36189.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36189.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36189
reference_id
reference_type
scores
0
value 0.03941
scoring_system epss
scoring_elements 0.88356
published_at 2026-04-16T12:55:00Z
1
value 0.03941
scoring_system epss
scoring_elements 0.88343
published_at 2026-04-13T12:55:00Z
2
value 0.03941
scoring_system epss
scoring_elements 0.88351
published_at 2026-04-11T12:55:00Z
3
value 0.03941
scoring_system epss
scoring_elements 0.88341
published_at 2026-04-09T12:55:00Z
4
value 0.03941
scoring_system epss
scoring_elements 0.88335
published_at 2026-04-08T12:55:00Z
5
value 0.03941
scoring_system epss
scoring_elements 0.88315
published_at 2026-04-07T12:55:00Z
6
value 0.03941
scoring_system epss
scoring_elements 0.88311
published_at 2026-04-04T12:55:00Z
7
value 0.03941
scoring_system epss
scoring_elements 0.88289
published_at 2026-04-01T12:55:00Z
8
value 0.03941
scoring_system epss
scoring_elements 0.88297
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36189
2
reference_url https://cowtowncoder.medium.com/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://cowtowncoder.medium.com/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36189
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36189
4
reference_url https://github.com/FasterXML/jackson-databind
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FasterXML/jackson-databind
5
reference_url https://github.com/FasterXML/jackson-databind/commit/33d96c13fe18a2dad01b19ce195548c9acea9da4
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FasterXML/jackson-databind/commit/33d96c13fe18a2dad01b19ce195548c9acea9da4
6
reference_url https://github.com/FasterXML/jackson-databind/issues/2996
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FasterXML/jackson-databind/issues/2996
7
reference_url https://lists.debian.org/debian-lts-announce/2021/04/msg00025.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2021/04/msg00025.html
8
reference_url https://security.netapp.com/advisory/ntap-20210205-0005
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210205-0005
9
reference_url https://security.netapp.com/advisory/ntap-20210205-0005/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20210205-0005/
10
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuApr2021.html
11
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuapr2022.html
12
reference_url https://www.oracle.com/security-alerts/cpujan2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpujan2022.html
13
reference_url https://www.oracle.com//security-alerts/cpujul2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com//security-alerts/cpujul2021.html
14
reference_url https://www.oracle.com/security-alerts/cpujul2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpujul2022.html
15
reference_url https://www.oracle.com/security-alerts/cpuoct2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuoct2021.html
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1913937
reference_id 1913937
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1913937
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-36189
reference_id CVE-2020-36189
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-36189
18
reference_url https://github.com/advisories/GHSA-vfqx-33qm-g869
reference_id GHSA-vfqx-33qm-g869
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vfqx-33qm-g869
19
reference_url https://access.redhat.com/errata/RHSA-2021:1230
reference_id RHSA-2021:1230
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1230
20
reference_url https://access.redhat.com/errata/RHSA-2021:1515
reference_id RHSA-2021:1515
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1515
Weaknesses
0
cwe_id 502
name Deserialization of Untrusted Data
description The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-8ns6-kacn-dkeg