CVE-2019-16335
published 2019-09-15CVE-2019-16335: A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | jackson-databind | < jackson-databind 2.10.0-1 (bookworm) | jackson-databind 2.10.0-1 (bookworm) |
| fasterxml | jackson-databind | >= 0 < 2.10.0-1 | 2.10.0-1 |
| fasterxml | jackson-databind | >= 0 < 2.10.0-1 | 2.10.0-1 |
| fasterxml | jackson-databind | >= 0 < 2.10.0-1 | 2.10.0-1 |
| fasterxml | jackson-databind | >= 0 < 2.10.0-1 | 2.10.0-1 |
| fasterxml | jackson-databind | >= 0 < 2.4.2-3ubuntu0.1~esm2 | 2.4.2-3ubuntu0.1~esm2 |
| fasterxml | jackson-databind | >= 2.0.0 < 2.6.7.3 | 2.6.7.3 |
| fasterxml | jackson-databind | >= 2.7.0 < 2.8.11.5 | 2.8.11.5 |
| fasterxml | jackson-databind | >= 2.9.0 < 2.9.10 | 2.9.10 |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | banking_platform | — | — |
| oracle | customer_management_and_segmentation_foundation | — | — |
| oracle | financial_services_analytical_applications_infrastructure | 8.0.2 – 8.0.8 | — |
| oracle | global_lifecycle_management_opatch | < 11.2.0.3.23 | 11.2.0.3.23 |
| oracle | global_lifecycle_management_opatch | >= 12.2.0.1.0 < 12.2.0.1.19 | 12.2.0.1.19 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
ghsa9.8CRITICAL
osv9.8CRITICAL