CVE-2018-1000873 (active_iq_unified_manager, clusterware, database_server, global_lifecycle_management_opatch, jackson-modules-java8, nosql_database)

Leave a reply

Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service (DoS). This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the nanoseconds field of a time value. This vulnerability appears to have been fixed in 2.9.8.

View Full Alert

Related Posts

  • CVE-2019-14477

    AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted. View Full Alert

  • CVE-2018-14885

    Incorrect access control in the database manager component in Odoo Community 10.0 and 11.0 and Odoo Enterprise 10.0 and 11.0 allows a remote attacker to restore a database dump without…

  • CVE-2011-5020 (online_tv_database)

    An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011. View Full Alert

Leave a Reply