Exploit/Advisories Cybersecurity study of the dark web exposes vulnerability to machine identities -- ScienceDaily

Published on September 16th, 2019 📆 | 4582 Views ⚑

0

FasterXML jackson-databind up to 2.9.9 unknown vulnerability


iSpeech

CVSS Meta Temp Score Current Exploit Price (โ‰ˆ)
5.3 $0-$5k

A vulnerability was found in FasterXML jackson-databind up to 2.9.9 and classified as problematic. The impact remains unknown. The summary by CVE is:

A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.

The weakness was shared 09/15/2019. The identification of this vulnerability is CVE-2019-16335 since 09/15/2019. Neither technical details nor an exploit are publicly available. The price for an exploit might be around USD $0-$5k at the moment (estimation calculated on 09/16/2019).

Upgrading to version 2.9.10 eliminates this vulnerability.

The entry 141805 is related to this item.

Vendor

Name

Class: Unknown
Local: Yes
Remote: No

Availability: ๐Ÿ”’
Status: Not defined





Price Prediction: ๐Ÿ”
Current Price Estimation: ๐Ÿ”’


0-Day unlock unlock unlock unlock
Today unlock unlock unlock unlock

Threat Intelligenceinfoedit

Threat: ๐Ÿ”
Adversaries: ๐Ÿ”
Geopolitics: ๐Ÿ”
Economy: ๐Ÿ”
Predictions: ๐Ÿ”
Remediation: ๐Ÿ”Recommended: Upgrade
Status: ๐Ÿ”

0-Day Time: ๐Ÿ”’

Upgrade: jackson-databind 2.9.10

09/15/2019 Advisory disclosed
09/15/2019 +0 days CVE assigned
09/16/2019 +1 days VulDB entry created
09/16/2019 +0 days VulDB last update
CVE: CVE-2019-16335 (๐Ÿ”’)
See also: ๐Ÿ”’Created: 09/16/2019 02:48 PM
Complete: ๐Ÿ”

Check our Alexa App!

https://vuldb.com/?id.141809

Tagged with: โ€ข โ€ข โ€ข โ€ข



Comments are closed.






ยฉ Torchsec ย Privacy Policyย Disclaimer ย T&C



Back to Top ↑