CVE-2018-14721 vulnerability in FasterXML and Other Products
Published on January 2, 2019

FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to conduct server-side request forgery (SSRF) attacks by leveraging failure to block the axis2-jaxws class from polymorphic deserialization.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-14721

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-14721 are published in these products:

FasterXML Jackson Databind

Oracle Banking Platform

Oracle Communications Billing Revenue Management

Oracle Enterprise Manager Virtualization

Oracle Financial Services Analytical Applications Infrastructure

Oracle Jdeveloper

Oracle Primavera Unifier

Oracle Retail Merchandising System

Oracle Webcenter Portal

Red Hat Jboss Enterprise Application Platform

Red Hat Openshift Container Platform

Debian Linux

Exploit Probability

EPSS

9.44%

Percentile

92.64%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-14721 vulnerability in FasterXML and Other ProductsPublished on January 2, 2019

Products Associated with CVE-2018-14721

Exploit Probability

CVE-2018-14721 vulnerability in FasterXML and Other Products
Published on January 2, 2019