Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-yp37-9z2d-akaj
Summary
Unsafe Deserialization in jackson-databind
FasterXML jackson-databind 2.x before 2.9.10.8 and 2.6.7.5 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS.
Aliases
0
alias CVE-2020-36180
1
alias GHSA-8c4j-34r4-xr8g
Fixed_packages
0
url pkg:deb/debian/jackson-databind@2.12.1-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.12.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%3Fdistro=trixie
1
url pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2cup-9gdn-yyhk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1
purl pkg:deb/debian/jackson-databind@2.12.1-1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2cup-9gdn-yyhk
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.12.1-1%252Bdeb11u1
3
url pkg:deb/debian/jackson-databind@2.14.0-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.14.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.14.0-1%3Fdistro=trixie
4
url pkg:deb/debian/jackson-databind@2.14.0%2Bds-1?distro=trixie
purl pkg:deb/debian/jackson-databind@2.14.0%2Bds-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.14.0%252Bds-1%3Fdistro=trixie
5
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-5r6v-ej7d-ubgv
2
vulnerability VCID-6zee-aqcc-vfbp
3
vulnerability VCID-8h7y-y4pv-cyd3
4
vulnerability VCID-8jw8-6tev-aqgm
5
vulnerability VCID-8tmq-zbmb-m7h4
6
vulnerability VCID-96pq-m4f3-zbad
7
vulnerability VCID-9h46-72hw-bkcr
8
vulnerability VCID-avut-gmwd-jqfp
9
vulnerability VCID-bypv-wfhs-sbe4
10
vulnerability VCID-ceub-d4s9-dkcd
11
vulnerability VCID-cytp-mr4h-g3ds
12
vulnerability VCID-hwnx-vf4v-f3db
13
vulnerability VCID-jcgb-bewy-4kff
14
vulnerability VCID-jx9y-fyfm-bqdr
15
vulnerability VCID-svkb-adja-qfef
16
vulnerability VCID-swqd-uk56-wkat
17
vulnerability VCID-tm7y-tnx3-43dq
18
vulnerability VCID-ukwd-7rkh-sfhj
19
vulnerability VCID-unwq-s63h-uuaw
20
vulnerability VCID-v2pq-1qhm-4qb9
21
vulnerability VCID-v6ek-y7cn-kycd
22
vulnerability VCID-wds4-urpb-euby
23
vulnerability VCID-x6g1-qw1v-jbas
24
vulnerability VCID-ypbt-p34k-hfbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.6.7.5
6
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9h46-72hw-bkcr
1
vulnerability VCID-v2pq-1qhm-4qb9
2
vulnerability VCID-v6ek-y7cn-kycd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.10.8
Affected_packages
0
url pkg:deb/debian/jackson-databind@2.4.2-2
purl pkg:deb/debian/jackson-databind@2.4.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.4.2-2
1
url pkg:deb/debian/jackson-databind@2.4.2-2%2Bdeb8u4
purl pkg:deb/debian/jackson-databind@2.4.2-2%2Bdeb8u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.4.2-2%252Bdeb8u4
2
url pkg:deb/debian/jackson-databind@2.8.6-1%2Bdeb9u7
purl pkg:deb/debian/jackson-databind@2.8.6-1%2Bdeb9u7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-3qjf-azsa-fbek
4
vulnerability VCID-3wa1-khqf-x7fv
5
vulnerability VCID-4an1-3hs5-3yd6
6
vulnerability VCID-4vx2-s262-ckbp
7
vulnerability VCID-56sb-829v-6qbz
8
vulnerability VCID-5qfd-jjh1-d3fx
9
vulnerability VCID-5r6v-ej7d-ubgv
10
vulnerability VCID-5te6-415m-c7df
11
vulnerability VCID-6xn4-4gfc-tbgj
12
vulnerability VCID-6zee-aqcc-vfbp
13
vulnerability VCID-75mz-c1ds-vqed
14
vulnerability VCID-7qga-wsz6-kqcn
15
vulnerability VCID-8h7y-y4pv-cyd3
16
vulnerability VCID-8ns6-kacn-dkeg
17
vulnerability VCID-8tmq-zbmb-m7h4
18
vulnerability VCID-96pq-m4f3-zbad
19
vulnerability VCID-9h46-72hw-bkcr
20
vulnerability VCID-9qdt-7p83-4yd8
21
vulnerability VCID-9wej-f7zx-pfeq
22
vulnerability VCID-a5sk-5grx-eyaf
23
vulnerability VCID-avut-gmwd-jqfp
24
vulnerability VCID-bc2x-rwrd-tya6
25
vulnerability VCID-bydt-bkf4-rbh2
26
vulnerability VCID-bypv-wfhs-sbe4
27
vulnerability VCID-ceub-d4s9-dkcd
28
vulnerability VCID-cytp-mr4h-g3ds
29
vulnerability VCID-ec58-s3nd-7yaz
30
vulnerability VCID-fafy-ugq3-cfbn
31
vulnerability VCID-g6up-yqg8-nbep
32
vulnerability VCID-g8gt-d7gz-13e6
33
vulnerability VCID-gtzx-y5f1-vye3
34
vulnerability VCID-hwnx-vf4v-f3db
35
vulnerability VCID-jcgb-bewy-4kff
36
vulnerability VCID-jvp6-892x-nkc7
37
vulnerability VCID-jx9y-fyfm-bqdr
38
vulnerability VCID-m7jp-7n22-4qg8
39
vulnerability VCID-pnt3-1ssq-tqau
40
vulnerability VCID-ruae-hqdg-m7ek
41
vulnerability VCID-svkb-adja-qfef
42
vulnerability VCID-sw29-epz3-g7ep
43
vulnerability VCID-swqd-uk56-wkat
44
vulnerability VCID-tkej-jh51-s7g5
45
vulnerability VCID-tm7y-tnx3-43dq
46
vulnerability VCID-twvp-wxff-zka2
47
vulnerability VCID-u87p-2xgz-e3fj
48
vulnerability VCID-uhnv-3cny-qkgx
49
vulnerability VCID-ukwd-7rkh-sfhj
50
vulnerability VCID-unwq-s63h-uuaw
51
vulnerability VCID-uygc-h93v-vuh8
52
vulnerability VCID-v2pq-1qhm-4qb9
53
vulnerability VCID-v6ek-y7cn-kycd
54
vulnerability VCID-v84e-sf92-dqa1
55
vulnerability VCID-w51e-ntqd-8bbg
56
vulnerability VCID-wdgx-34uc-2qa4
57
vulnerability VCID-wds4-urpb-euby
58
vulnerability VCID-wg36-q48g-mkds
59
vulnerability VCID-x4fr-ena4-47fe
60
vulnerability VCID-x6g1-qw1v-jbas
61
vulnerability VCID-x8c2-2u1w-yyfn
62
vulnerability VCID-xnyb-nuwm-pkdr
63
vulnerability VCID-ygs8-4gxq-kygq
64
vulnerability VCID-yp37-9z2d-akaj
65
vulnerability VCID-ypbt-p34k-hfbc
66
vulnerability VCID-zdwv-ycey-myfc
67
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.8.6-1%252Bdeb9u7
3
url pkg:deb/debian/jackson-databind@2.9.8-3%2Bdeb10u3
purl pkg:deb/debian/jackson-databind@2.9.8-3%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2qzn-mkhg-1qh3
2
vulnerability VCID-3qjf-azsa-fbek
3
vulnerability VCID-3wa1-khqf-x7fv
4
vulnerability VCID-4an1-3hs5-3yd6
5
vulnerability VCID-4vx2-s262-ckbp
6
vulnerability VCID-5qfd-jjh1-d3fx
7
vulnerability VCID-5te6-415m-c7df
8
vulnerability VCID-6xn4-4gfc-tbgj
9
vulnerability VCID-7qga-wsz6-kqcn
10
vulnerability VCID-8h7y-y4pv-cyd3
11
vulnerability VCID-8ns6-kacn-dkeg
12
vulnerability VCID-8tmq-zbmb-m7h4
13
vulnerability VCID-96pq-m4f3-zbad
14
vulnerability VCID-9h46-72hw-bkcr
15
vulnerability VCID-9qdt-7p83-4yd8
16
vulnerability VCID-a5sk-5grx-eyaf
17
vulnerability VCID-avut-gmwd-jqfp
18
vulnerability VCID-bydt-bkf4-rbh2
19
vulnerability VCID-bypv-wfhs-sbe4
20
vulnerability VCID-cytp-mr4h-g3ds
21
vulnerability VCID-ec58-s3nd-7yaz
22
vulnerability VCID-gtzx-y5f1-vye3
23
vulnerability VCID-hwnx-vf4v-f3db
24
vulnerability VCID-jcgb-bewy-4kff
25
vulnerability VCID-jvp6-892x-nkc7
26
vulnerability VCID-jx9y-fyfm-bqdr
27
vulnerability VCID-pnt3-1ssq-tqau
28
vulnerability VCID-ruae-hqdg-m7ek
29
vulnerability VCID-svkb-adja-qfef
30
vulnerability VCID-swqd-uk56-wkat
31
vulnerability VCID-tkej-jh51-s7g5
32
vulnerability VCID-tm7y-tnx3-43dq
33
vulnerability VCID-twvp-wxff-zka2
34
vulnerability VCID-u87p-2xgz-e3fj
35
vulnerability VCID-uhnv-3cny-qkgx
36
vulnerability VCID-ukwd-7rkh-sfhj
37
vulnerability VCID-uygc-h93v-vuh8
38
vulnerability VCID-v2pq-1qhm-4qb9
39
vulnerability VCID-v6ek-y7cn-kycd
40
vulnerability VCID-w51e-ntqd-8bbg
41
vulnerability VCID-wdgx-34uc-2qa4
42
vulnerability VCID-wds4-urpb-euby
43
vulnerability VCID-wg36-q48g-mkds
44
vulnerability VCID-x4fr-ena4-47fe
45
vulnerability VCID-x8c2-2u1w-yyfn
46
vulnerability VCID-xnyb-nuwm-pkdr
47
vulnerability VCID-yp37-9z2d-akaj
48
vulnerability VCID-ypbt-p34k-hfbc
49
vulnerability VCID-ze79-6kcg-nfcp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jackson-databind@2.9.8-3%252Bdeb10u3
4
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.0.0
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2x39-rsxh-rkgw
2
vulnerability VCID-4an1-3hs5-3yd6
3
vulnerability VCID-4vx2-s262-ckbp
4
vulnerability VCID-56sb-829v-6qbz
5
vulnerability VCID-5qfd-jjh1-d3fx
6
vulnerability VCID-5r6v-ej7d-ubgv
7
vulnerability VCID-5te6-415m-c7df
8
vulnerability VCID-6zee-aqcc-vfbp
9
vulnerability VCID-75mz-c1ds-vqed
10
vulnerability VCID-7qga-wsz6-kqcn
11
vulnerability VCID-8h7y-y4pv-cyd3
12
vulnerability VCID-8jw8-6tev-aqgm
13
vulnerability VCID-8tmq-zbmb-m7h4
14
vulnerability VCID-96pq-m4f3-zbad
15
vulnerability VCID-9wej-f7zx-pfeq
16
vulnerability VCID-avut-gmwd-jqfp
17
vulnerability VCID-bypv-wfhs-sbe4
18
vulnerability VCID-ceub-d4s9-dkcd
19
vulnerability VCID-cytp-mr4h-g3ds
20
vulnerability VCID-g6up-yqg8-nbep
21
vulnerability VCID-gtzx-y5f1-vye3
22
vulnerability VCID-hwnx-vf4v-f3db
23
vulnerability VCID-jcgb-bewy-4kff
24
vulnerability VCID-jvp6-892x-nkc7
25
vulnerability VCID-jx9y-fyfm-bqdr
26
vulnerability VCID-ruae-hqdg-m7ek
27
vulnerability VCID-svkb-adja-qfef
28
vulnerability VCID-swqd-uk56-wkat
29
vulnerability VCID-tm7y-tnx3-43dq
30
vulnerability VCID-u87p-2xgz-e3fj
31
vulnerability VCID-uhnv-3cny-qkgx
32
vulnerability VCID-ukwd-7rkh-sfhj
33
vulnerability VCID-unwq-s63h-uuaw
34
vulnerability VCID-v2pq-1qhm-4qb9
35
vulnerability VCID-v6ek-y7cn-kycd
36
vulnerability VCID-v84e-sf92-dqa1
37
vulnerability VCID-wds4-urpb-euby
38
vulnerability VCID-x6g1-qw1v-jbas
39
vulnerability VCID-x8c2-2u1w-yyfn
40
vulnerability VCID-xnyb-nuwm-pkdr
41
vulnerability VCID-ygs8-4gxq-kygq
42
vulnerability VCID-yp37-9z2d-akaj
43
vulnerability VCID-ypbt-p34k-hfbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.0.0
5
url pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16af-yv1z-xufy
1
vulnerability VCID-2ev8-r6cx-a3an
2
vulnerability VCID-2x39-rsxh-rkgw
3
vulnerability VCID-4vx2-s262-ckbp
4
vulnerability VCID-56sb-829v-6qbz
5
vulnerability VCID-5qfd-jjh1-d3fx
6
vulnerability VCID-5r6v-ej7d-ubgv
7
vulnerability VCID-5te6-415m-c7df
8
vulnerability VCID-6xn4-4gfc-tbgj
9
vulnerability VCID-6zee-aqcc-vfbp
10
vulnerability VCID-75mz-c1ds-vqed
11
vulnerability VCID-7qga-wsz6-kqcn
12
vulnerability VCID-8h7y-y4pv-cyd3
13
vulnerability VCID-8jw8-6tev-aqgm
14
vulnerability VCID-8ns6-kacn-dkeg
15
vulnerability VCID-8tmq-zbmb-m7h4
16
vulnerability VCID-96pq-m4f3-zbad
17
vulnerability VCID-9h46-72hw-bkcr
18
vulnerability VCID-9qdt-7p83-4yd8
19
vulnerability VCID-9wej-f7zx-pfeq
20
vulnerability VCID-avut-gmwd-jqfp
21
vulnerability VCID-bydt-bkf4-rbh2
22
vulnerability VCID-bypv-wfhs-sbe4
23
vulnerability VCID-ceub-d4s9-dkcd
24
vulnerability VCID-cytp-mr4h-g3ds
25
vulnerability VCID-ec58-s3nd-7yaz
26
vulnerability VCID-fafy-ugq3-cfbn
27
vulnerability VCID-g6up-yqg8-nbep
28
vulnerability VCID-g8gt-d7gz-13e6
29
vulnerability VCID-gtzx-y5f1-vye3
30
vulnerability VCID-hwnx-vf4v-f3db
31
vulnerability VCID-jcgb-bewy-4kff
32
vulnerability VCID-jx9y-fyfm-bqdr
33
vulnerability VCID-m7jp-7n22-4qg8
34
vulnerability VCID-svkb-adja-qfef
35
vulnerability VCID-sw29-epz3-g7ep
36
vulnerability VCID-swqd-uk56-wkat
37
vulnerability VCID-tm7y-tnx3-43dq
38
vulnerability VCID-u87p-2xgz-e3fj
39
vulnerability VCID-uhnv-3cny-qkgx
40
vulnerability VCID-ukwd-7rkh-sfhj
41
vulnerability VCID-unwq-s63h-uuaw
42
vulnerability VCID-v2pq-1qhm-4qb9
43
vulnerability VCID-v6ek-y7cn-kycd
44
vulnerability VCID-v84e-sf92-dqa1
45
vulnerability VCID-wds4-urpb-euby
46
vulnerability VCID-x6g1-qw1v-jbas
47
vulnerability VCID-x8c2-2u1w-yyfn
48
vulnerability VCID-xnyb-nuwm-pkdr
49
vulnerability VCID-ygs8-4gxq-kygq
50
vulnerability VCID-yp37-9z2d-akaj
51
vulnerability VCID-ypbt-p34k-hfbc
52
vulnerability VCID-zdwv-ycey-myfc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.0
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36180.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36180.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36180
reference_id
reference_type
scores
0
value 0.02715
scoring_system epss
scoring_elements 0.85941
published_at 2026-04-16T12:55:00Z
1
value 0.02715
scoring_system epss
scoring_elements 0.85922
published_at 2026-04-13T12:55:00Z
2
value 0.02715
scoring_system epss
scoring_elements 0.85928
published_at 2026-04-12T12:55:00Z
3
value 0.02715
scoring_system epss
scoring_elements 0.85931
published_at 2026-04-11T12:55:00Z
4
value 0.02715
scoring_system epss
scoring_elements 0.85916
published_at 2026-04-09T12:55:00Z
5
value 0.02715
scoring_system epss
scoring_elements 0.85906
published_at 2026-04-08T12:55:00Z
6
value 0.02715
scoring_system epss
scoring_elements 0.85888
published_at 2026-04-07T12:55:00Z
7
value 0.02715
scoring_system epss
scoring_elements 0.85884
published_at 2026-04-04T12:55:00Z
8
value 0.02715
scoring_system epss
scoring_elements 0.85867
published_at 2026-04-02T12:55:00Z
9
value 0.02715
scoring_system epss
scoring_elements 0.85855
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36180
2
reference_url https://cowtowncoder.medium.com/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://cowtowncoder.medium.com/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36180
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36180
4
reference_url https://github.com/FasterXML/jackson-databind
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FasterXML/jackson-databind
5
reference_url https://github.com/FasterXML/jackson-databind/commit/3ded28aece694d0df39c9f0fa1ff385b14a8656b
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FasterXML/jackson-databind/commit/3ded28aece694d0df39c9f0fa1ff385b14a8656b
6
reference_url https://github.com/FasterXML/jackson-databind/issues/3004
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://github.com/FasterXML/jackson-databind/issues/3004
7
reference_url https://lists.debian.org/debian-lts-announce/2021/04/msg00025.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://lists.debian.org/debian-lts-announce/2021/04/msg00025.html
8
reference_url https://security.netapp.com/advisory/ntap-20210205-0005
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210205-0005
9
reference_url https://security.netapp.com/advisory/ntap-20210205-0005/
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://security.netapp.com/advisory/ntap-20210205-0005/
10
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com/security-alerts/cpuApr2021.html
11
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com/security-alerts/cpuapr2022.html
12
reference_url https://www.oracle.com/security-alerts/cpujan2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com/security-alerts/cpujan2022.html
13
reference_url https://www.oracle.com//security-alerts/cpujul2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com//security-alerts/cpujul2021.html
14
reference_url https://www.oracle.com/security-alerts/cpujul2022.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com/security-alerts/cpujul2022.html
15
reference_url https://www.oracle.com/security-alerts/cpuoct2021.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-25T04:00:49Z/
url https://www.oracle.com/security-alerts/cpuoct2021.html
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1913872
reference_id 1913872
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1913872
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-36180
reference_id CVE-2020-36180
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-36180
18
reference_url https://github.com/advisories/GHSA-8c4j-34r4-xr8g
reference_id GHSA-8c4j-34r4-xr8g
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8c4j-34r4-xr8g
19
reference_url https://access.redhat.com/errata/RHSA-2021:1230
reference_id RHSA-2021:1230
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1230
20
reference_url https://access.redhat.com/errata/RHSA-2021:1515
reference_id RHSA-2021:1515
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1515
Weaknesses
0
cwe_id 502
name Deserialization of Untrusted Data
description The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-yp37-9z2d-akaj