Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

redhat jboss brms 6.4.10 vulnerabilities and exploits

(subscribe to this query)
5.1
CVSSv2
CVE-2018-12022
An issue exists in FasterXML jackson-databind before 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either globally or for a specific property), the service has the Jodd-db jar (for database access for the Jodd framework) in the classpath, and an attacker can provi...
Fasterxml Jackson-databindDebian Debian Linux 9.0Fedoraproject Fedora 29Oracle Jd Edwards Enterpriseone Tools 9.2Oracle Retail Merchandising System 15.0Redhat Openshift Container Platform 3.11Redhat Jboss Enterprise Application Platform 7.2.0Redhat Single Sign-on 7.3Redhat Jboss Brms 6.4.10Redhat Automation Manager 7.3.1Redhat Decision Manager 7.3.1
5.1
CVSSv2
CVE-2018-12023
An issue exists in FasterXML jackson-databind before 2.7.9.4, 2.8.11.2, and 2.9.6. When Default Typing is enabled (either globally or for a specific property), the service has the Oracle JDBC jar in the classpath, and an attacker can provide an LDAP service to access, it is possi...
Fasterxml Jackson-databindDebian Debian Linux 9.0Fedoraproject Fedora 29Oracle Jd Edwards Enterpriseone Tools 9.2Oracle Retail Merchandising System 15.0Redhat Openshift Container Platform 3.11Redhat Jboss Enterprise Application Platform 7.2.0Redhat Single Sign-on 7.3Redhat Jboss Brms 6.4.10Redhat Automation Manager 7.3.1Redhat Decision Manager 7.3.1
7.5
CVSSv2
CVE-2018-19361
FasterXML jackson-databind 2.x prior to 2.9.8 might allow malicious users to have unspecified impact by leveraging failure to block the openjpa class from polymorphic deserialization.
Fasterxml Jackson-databindDebian Debian Linux 8.0Debian Debian Linux 9.0Oracle Primavera Unifier 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 15.1Oracle Primavera Unifier 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 15.2Oracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.1.3.0.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Primavera P6 Enterprise Project Portfolio ManagementOracle Primavera P6 Enterprise Project Portfolio Management 18.8Oracle Primavera Unifier 18.8Oracle Retail Workforce Management Software 1.60.9.0.0Oracle Primavera UnifierRedhat Openshift Container Platform 3.11Redhat Jboss Bpm Suite 6.4.11Redhat Jboss Brms 6.4.10Redhat Automation Manager 7.3.1Redhat Decision Manager 7.3.1
7.5
CVSSv2
CVE-2018-19362
FasterXML jackson-databind 2.x prior to 2.9.8 might allow malicious users to have unspecified impact by leveraging failure to block the jboss-common-core class from polymorphic deserialization.
Fasterxml Jackson-databindDebian Debian Linux 8.0Oracle Primavera Unifier 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 15.1Oracle Primavera Unifier 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 15.2Oracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.1.3.0.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Primavera P6 Enterprise Project Portfolio ManagementOracle Primavera P6 Enterprise Project Portfolio Management 18.8Oracle Primavera Unifier 18.8Oracle Retail Workforce Management Software 1.60.9.0.0Oracle Primavera UnifierRedhat Openshift Container Platform 3.11Redhat Jboss Bpm Suite 6.4.11Redhat Jboss Brms 6.4.10Redhat Automation Manager 7.3.1Redhat Decision Manager 7.3.1
7.5
CVSSv2
CVE-2018-19360
FasterXML jackson-databind 2.x prior to 2.9.8 might allow malicious users to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization.
Fasterxml Jackson-databindDebian Debian Linux 8.0Oracle Primavera Unifier 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 16.2Oracle Primavera P6 Enterprise Project Portfolio Management 15.1Oracle Primavera Unifier 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 16.1Oracle Primavera P6 Enterprise Project Portfolio Management 15.2Oracle Webcenter Portal 12.2.1.3.0Oracle Business Process Management Suite 12.1.3.0.0Oracle Business Process Management Suite 12.2.1.3.0Oracle Primavera P6 Enterprise Project Portfolio ManagementOracle Primavera P6 Enterprise Project Portfolio Management 18.8Oracle Primavera Unifier 18.8Oracle Retail Workforce Management Software 1.60.9.0.0Oracle Primavera UnifierRedhat Openshift Container Platform 3.11Redhat Jboss Bpm Suite 6.4.11Redhat Jboss Brms 6.4.10Redhat Automation Manager 7.3.1Redhat Decision Manager 7.3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook