Homepage

eap7-jackson-databind vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-jackson-databind package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Improper Input Validation

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Arbitrary Code Injection

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Uncontrolled Recursion

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Improper Input Validation

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Improper Input Validation

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Improper Input Validation

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Files or Directories Accessible to External Parties

<0:2.8.11.6-2.SP1_redhat_00002.1.ep7.el7
  • C
Arbitrary Command Injection

<0:2.10.4-4.redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Server-Side Request Forgery (SSRF)

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Uncontrolled Memory Allocation

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Integer Coercion Error

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Improper Authentication

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
SQL Injection

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Improper Input Validation

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Authentication Bypass

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Cross-site Scripting (XSS)

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:2.9.10.2-1.redhat_00001.1.el7eap
  • H
Improperly Implemented Security Check for Standard

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Race Condition

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Resource Exhaustion

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Information Exposure Through Log Files

<0:2.9.9.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.9.3-1.redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Improper Access Control

<0:2.9.10.2-2.redhat_00002.1.el7eap
  • H
Incorrect Authorization

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Privilege Context Switching Error

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Insufficiently Protected Credentials

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Information Exposure

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Resource Exhaustion

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
Directory Traversal

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Improper Authorization

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Exposed Dangerous Method or Function

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Session Fixation

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Directory Traversal

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Directory Traversal

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Insufficient Verification of Data Authenticity

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Incorrect Permission Assignment for Critical Resource

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Out-of-Bounds

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Access Restriction Bypass

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Improper Authorization

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Improper Input Validation

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
SQL Injection

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Information Exposure

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Improper Authentication

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Out-of-bounds Read

<0:2.10.3-1.redhat_00001.1.el7eap
  • M
Improper Input Validation

<0:2.8.11.1-1.redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Information Exposure Through Log Files

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.8.9-1.redhat_1.1.ep7.el7
  • M
Cross-site Scripting (XSS)

<0:2.8.11.3-1.redhat_00001.1.ep7.el7
  • H
Improper Input Validation

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Improper Access Control

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Missing Authorization

<0:2.9.9.3-1.redhat_00001.1.el7eap
  • H
Arbitrary Code Injection

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11-1.redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.10.3-1.redhat_00001.1.el7eap
  • M
Information Exposure

<0:2.9.5-2.redhat_2.1.el7eap
  • H
Server-Side Request Forgery (SSRF)

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • C
Deserialization of Untrusted Data

<0:2.10.4-4.redhat_00004.1.el7eap
  • M
Resource Exhaustion

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Unchecked Return Value

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Incorrect Authorization

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Memory Leak

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Allocation of Resources Without Limits or Throttling

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Deserialization of Untrusted Data

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • H
HTTP Request Smuggling

<0:2.8.11.6-1.SP1_redhat_00001.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Improper Resource Shutdown or Release

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Out-of-Bounds

<0:2.10.4-1.redhat_00001.1.el7eap
  • M
HTTP Request Smuggling

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Resource Exhaustion

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Resource Exhaustion

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • H
Incomplete Blacklist

<0:2.8.11-1.redhat_1.1.ep7.el7
  • C
Out-of-bounds Write

<0:2.10.4-4.redhat_00004.1.el7eap
  • H
Stack-based Buffer Overflow

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Resource Exhaustion

<0:2.12.7-1.redhat_00003.1.el7eap
  • C
Deserialization of Untrusted Data

<0:2.10.4-4.redhat_00004.1.el7eap
  • C
Deserialization of Untrusted Data

<0:2.10.4-4.redhat_00004.1.el7eap
  • H
Out-of-bounds Write

<0:2.12.7-1.redhat_00003.1.el7eap
  • M
Directory Traversal

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Resource Exhaustion

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Improper Handling of Insufficient Permissions or Privileges

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.12.6.1-1.redhat_00003.1.el7eap
  • H
HTTP Response Splitting

<0:2.8.9-1.redhat_1.1.ep7.el7
  • H
Cross-site Request Forgery (CSRF)

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.8-2.redhat_00004.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • C
Static Code Injection

<0:2.8.11.6-2.SP1_redhat_00002.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • C
Static Code Injection

<0:2.8.11.6-2.SP1_redhat_00002.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:2.10.4-1.redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:2.12.7-1.redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • M
Arbitrary Argument Injection

<0:2.8.11.3-1.redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.9.9.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.9.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.10.3-1.redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:2.10.4-1.redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.9.10.1-1.redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.8.11.5-1.redhat_00001.1.ep7.el7
  • M
Resource Exhaustion

<0:2.8.11.1-1.redhat_1.1.ep7.el7