{"url":"http://public2.vulnerablecode.io/api/packages/142010?format=json","purl":"pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.8.11.0","type":"maven","namespace":"com.fasterxml.jackson.core","name":"jackson-databind","version":"2.8.11.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.12.7.1","latest_non_vulnerable_version":"2.16.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4542?format=json","vulnerability_id":"VCID-x6g1-qw1v-jbas","summary":"FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper, bypassing a blacklist that is ineffective if the c3p0 libraries are available in the classpath.","references":[{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1447","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1447"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1448","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1448"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1449","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1449"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1450","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1451","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1451"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:1786","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:1786"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2088","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:2088"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2089","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:2089"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2090","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:2090"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2938","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:2938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2939","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2018:2939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2858","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:2858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3149","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2019:3149"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7489.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7489.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7489","reference_id":"","reference_type":"","scores":[{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.9711","published_at":"2026-04-16T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97074","published_at":"2026-04-01T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97081","published_at":"2026-04-02T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97126","published_at":"2026-05-05T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97085","published_at":"2026-04-04T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97123","published_at":"2026-04-29T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97122","published_at":"2026-04-26T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97101","published_at":"2026-04-13T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97119","published_at":"2026-04-24T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97118","published_at":"2026-04-21T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97113","published_at":"2026-04-18T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97086","published_at":"2026-04-07T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.97096","published_at":"2026-04-09T12:55:00Z"},{"value":"0.36207","scoring_system":"epss","scoring_elements":"0.971","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7489"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7489","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7489"},{"reference_url":"https://github.com/advisories/GHSA-cggj-fvv3-cqwv","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cggj-fvv3-cqwv"},{"reference_url":"https://github.com/FasterXML/jackson-databind","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/60d459cedcf079c6106ae7da2ac562bc32dcabe1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/FasterXML/jackson-databind/commit/60d459cedcf079c6106ae7da2ac562bc32dcabe1"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/6799f8f10cc78e9af6d443ed6982d00a13f2e7d2","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/commit/6799f8f10cc78e9af6d443ed6982d00a13f2e7d2"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/bc22f90eb7f896ace9567598a99cb1ff6e0f9d9d","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/commit/bc22f90eb7f896ace9567598a99cb1ff6e0f9d9d"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/c921f0935d5e41bf206e702d8077a275ba1a6efc","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/commit/c921f0935d5e41bf206e702d8077a275ba1a6efc"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/ca2bfc86af82a1479112004b663ba74c760752e6","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/commit/ca2bfc86af82a1479112004b663ba74c760752e6"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/ddfddfba6414adbecaff99684ef66eebd3a92e92","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/FasterXML/jackson-databind/commit/ddfddfba6414adbecaff99684ef66eebd3a92e92"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/e66c0a9d3c926ff1b63bf586c824ead1d02f2a3d","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/commit/e66c0a9d3c926ff1b63bf586c824ead1d02f2a3d"},{"reference_url":"https://github.com/FasterXML/jackson-databind/commit/e8f043d1aac9b82eee907e0f0c3abbdea723a935","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/FasterXML/jackson-databind/commit/e8f043d1aac9b82eee907e0f0c3abbdea723a935"},{"reference_url":"https://github.com/FasterXML/jackson-databind/issues/1931","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FasterXML/jackson-databind/issues/1931"},{"reference_url":"https://lists.apache.org/thread.html/r1d4a247329a8478073163567bbc8c8cb6b49c6bfc2bf58153a857af1@%3Ccommits.druid.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/r1d4a247329a8478073163567bbc8c8cb6b49c6bfc2bf58153a857af1@%3Ccommits.druid.apache.org%3E"},{"reference_url":"https://security.netapp.com/advisory/ntap-20180328-0001","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20180328-0001"},{"reference_url":"https://security.netapp.com/advisory/ntap-20180328-0001/","reference_id":"","reference_type":"","scores":[],"url":"https://security.netapp.com/advisory/ntap-20180328-0001/"},{"reference_url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03902en_us","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03902en_us"},{"reference_url":"https://www.debian.org/security/2018/dsa-4190","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.debian.org/security/2018/dsa-4190"},{"reference_url":"https://www.oracle.com/security-alerts/cpuoct2020.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.oracle.com/security-alerts/cpuoct2020.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"},{"reference_url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"},{"reference_url":"http://www.securityfocus.com/bid/103203","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/103203"},{"reference_url":"http://www.securitytracker.com/id/1040693","reference_id":"","reference_type":"","scores":[],"url":"http://www.securitytracker.com/id/1040693"},{"reference_url":"http://www.securitytracker.com/id/1041890","reference_id":"","reference_type":"","scores":[],"url":"http://www.securitytracker.com/id/1041890"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1549276","reference_id":"1549276","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1549276"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891614","reference_id":"891614","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891614"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-7489","reference_id":"CVE-2018-7489","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-7489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2562","reference_id":"RHSA-2020:2562","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2562"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/26191?format=json","purl":"pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.8.11.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16af-yv1z-xufy"},{"vulnerability":"VCID-2ev8-r6cx-a3an"},{"vulnerability":"VCID-2x39-rsxh-rkgw"},{"vulnerability":"VCID-56sb-829v-6qbz"},{"vulnerability":"VCID-5r6v-ej7d-ubgv"},{"vulnerability":"VCID-5te6-415m-c7df"},{"vulnerability":"VCID-6zee-aqcc-vfbp"},{"vulnerability":"VCID-75mz-c1ds-vqed"},{"vulnerability":"VCID-8h7y-y4pv-cyd3"},{"vulnerability":"VCID-8jw8-6tev-aqgm"},{"vulnerability":"VCID-8tmq-zbmb-m7h4"},{"vulnerability":"VCID-96pq-m4f3-zbad"},{"vulnerability":"VCID-9h46-72hw-bkcr"},{"vulnerability":"VCID-9qdt-7p83-4yd8"},{"vulnerability":"VCID-avut-gmwd-jqfp"},{"vulnerability":"VCID-bydt-bkf4-rbh2"},{"vulnerability":"VCID-bypv-wfhs-sbe4"},{"vulnerability":"VCID-cytp-mr4h-g3ds"},{"vulnerability":"VCID-fafy-ugq3-cfbn"},{"vulnerability":"VCID-g6up-yqg8-nbep"},{"vulnerability":"VCID-g8gt-d7gz-13e6"},{"vulnerability":"VCID-hwnx-vf4v-f3db"},{"vulnerability":"VCID-jcgb-bewy-4kff"},{"vulnerability":"VCID-jx9y-fyfm-bqdr"},{"vulnerability":"VCID-m7jp-7n22-4qg8"},{"vulnerability":"VCID-svkb-adja-qfef"},{"vulnerability":"VCID-sw29-epz3-g7ep"},{"vulnerability":"VCID-swqd-uk56-wkat"},{"vulnerability":"VCID-tm7y-tnx3-43dq"},{"vulnerability":"VCID-u87p-2xgz-e3fj"},{"vulnerability":"VCID-ukwd-7rkh-sfhj"},{"vulnerability":"VCID-v2pq-1qhm-4qb9"},{"vulnerability":"VCID-v6ek-y7cn-kycd"},{"vulnerability":"VCID-wds4-urpb-euby"},{"vulnerability":"VCID-x8c2-2u1w-yyfn"},{"vulnerability":"VCID-xnyb-nuwm-pkdr"},{"vulnerability":"VCID-ypbt-p34k-hfbc"},{"vulnerability":"VCID-zdwv-ycey-myfc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.8.11.1"},{"url":"http://public2.vulnerablecode.io/api/packages/26554?format=json","purl":"pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16af-yv1z-xufy"},{"vulnerability":"VCID-2qzn-mkhg-1qh3"},{"vulnerability":"VCID-2x39-rsxh-rkgw"},{"vulnerability":"VCID-3qjf-azsa-fbek"},{"vulnerability":"VCID-3wa1-khqf-x7fv"},{"vulnerability":"VCID-56sb-829v-6qbz"},{"vulnerability":"VCID-5qfd-jjh1-d3fx"},{"vulnerability":"VCID-5r6v-ej7d-ubgv"},{"vulnerability":"VCID-5te6-415m-c7df"},{"vulnerability":"VCID-6zee-aqcc-vfbp"},{"vulnerability":"VCID-75mz-c1ds-vqed"},{"vulnerability":"VCID-8h7y-y4pv-cyd3"},{"vulnerability":"VCID-8jw8-6tev-aqgm"},{"vulnerability":"VCID-8tmq-zbmb-m7h4"},{"vulnerability":"VCID-96pq-m4f3-zbad"},{"vulnerability":"VCID-9h46-72hw-bkcr"},{"vulnerability":"VCID-9qdt-7p83-4yd8"},{"vulnerability":"VCID-a5sk-5grx-eyaf"},{"vulnerability":"VCID-avut-gmwd-jqfp"},{"vulnerability":"VCID-bydt-bkf4-rbh2"},{"vulnerability":"VCID-bypv-wfhs-sbe4"},{"vulnerability":"VCID-cytp-mr4h-g3ds"},{"vulnerability":"VCID-fafy-ugq3-cfbn"},{"vulnerability":"VCID-g6up-yqg8-nbep"},{"vulnerability":"VCID-g8gt-d7gz-13e6"},{"vulnerability":"VCID-hwnx-vf4v-f3db"},{"vulnerability":"VCID-jcgb-bewy-4kff"},{"vulnerability":"VCID-jx9y-fyfm-bqdr"},{"vulnerability":"VCID-m7jp-7n22-4qg8"},{"vulnerability":"VCID-pnt3-1ssq-tqau"},{"vulnerability":"VCID-svkb-adja-qfef"},{"vulnerability":"VCID-sw29-epz3-g7ep"},{"vulnerability":"VCID-swqd-uk56-wkat"},{"vulnerability":"VCID-tkej-jh51-s7g5"},{"vulnerability":"VCID-tm7y-tnx3-43dq"},{"vulnerability":"VCID-twvp-wxff-zka2"},{"vulnerability":"VCID-u87p-2xgz-e3fj"},{"vulnerability":"VCID-ukwd-7rkh-sfhj"},{"vulnerability":"VCID-uygc-h93v-vuh8"},{"vulnerability":"VCID-v2pq-1qhm-4qb9"},{"vulnerability":"VCID-v6ek-y7cn-kycd"},{"vulnerability":"VCID-w51e-ntqd-8bbg"},{"vulnerability":"VCID-wdgx-34uc-2qa4"},{"vulnerability":"VCID-wds4-urpb-euby"},{"vulnerability":"VCID-x4fr-ena4-47fe"},{"vulnerability":"VCID-x8c2-2u1w-yyfn"},{"vulnerability":"VCID-xnyb-nuwm-pkdr"},{"vulnerability":"VCID-ypbt-p34k-hfbc"},{"vulnerability":"VCID-zdwv-ycey-myfc"},{"vulnerability":"VCID-ze79-6kcg-nfcp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.9.5"}],"aliases":["CVE-2018-7489","GHSA-cggj-fvv3-cqwv"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x6g1-qw1v-jbas"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.8.11.0"}