CVE-2018-14718 vulnerability in FasterXML and Other Products

FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the slf4j-ext class from polymorphic deserialization.

Products Associated with CVE-2018-14718

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-14718 are published in these products:

FasterXML Jackson Databind

Oracle Banking Platform

Oracle Communications Billing Revenue Management

Oracle Enterprise Manager Virtualization

Oracle Financial Services Analytical Applications Infrastructure

Oracle Jdeveloper

Oracle Primavera Unifier

Oracle Retail Merchandising System

Oracle Webcenter Portal

Debian Linux

Oracle Business Process Management Suite

Oracle Communications Instant Messaging Server

Oracle Global Lifecycle Management Opatch

Oracle Jd Edwards Enterpriseone Orchestrator

Oracle Jd Edwards Enterpriseone Tools

Oracle Nosql Database

Oracle Primavera P6 Enterprise Project Portfolio Management

Oracle Retail Customer Management Segmentation Foundation

Oracle Retail Workforce Management Software

Oracle Siebel Engineering Installer Deployment

Oracle Siebel Ui Framework

NetApp Oncommand Workflow Automation

NetApp Snapcenter

NetApp Steelstore Cloud Integrated Storage

Red Hat Openshift Container Platform

Exploit Probability

EPSS

14.52%

Percentile

94.30%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-14718 vulnerability in FasterXML and Other ProductsPublished on January 2, 2019

Products Associated with CVE-2018-14718

Exploit Probability

CVE-2018-14718 vulnerability in FasterXML and Other Products
Published on January 2, 2019