Published: 18/02/2021 Updated: 06/12/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and prior to 2.11.4, from 2.12.0-rc1 and prior to 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception.

Vulnerable Product	Search on Vulmon	Subscribe to Product
fasterxml jackson-dataformats-binary
fasterxml jackson-dataformats-binary 2.12.0
quarkus quarkus
oracle weblogic server 12.2.1.3.0
oracle weblogic server 12.2.1.4.0
oracle weblogic server 14.1.1.0.0

Debian Bug report logs - #983664 jackson-dataformat-cbor: CVE-2020-28491 Package: src:jackson-dataformat-cbor; Maintainer for src:jackson-dataformat-cbor is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 28 Feb 2021 09:45:02 UTC ...

Synopsis Moderate: OpenShift Logging bug fix and security update (535) Type/Severity Security Advisory: Moderate Topic OpenShift Logging bug fix and security update (535)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed se ...

Synopsis Moderate: OpenShift Logging bug fix and security update (528) Type/Severity Security Advisory: Moderate Topic OpenShift Logging bug fix and security update (528)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed se ...

Synopsis Moderate: OpenShift Logging bug fix and security update (519) Type/Severity Security Advisory: Moderate Topic OpenShift Logging bug fix and security update (519)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed se ...

Synopsis Moderate: Red Hat Decision Manager 7120 security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat Decision ManagerRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...

Synopsis Critical: Red Hat Process Automation Manager 7120 security update Type/Severity Security Advisory: Critical Topic An update is now available for Red Hat Process Automation ManagerRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gi ...

Multiple vulnerabilities have been found in Hitachi Ops Center Common Services CVE-2020-1695, CVE-2020-1723, CVE-2020-1725, CVE-2020-10770, CVE-2020-14302, CVE-2020-15522, CVE-2020-25711, CVE-2020-27838, CVE-2020-28052, CVE-2020-28491, CVE-2021-3424, CVE-2021-3712, CVE-2021-20195, CVE-2021-20202, CVE-2021-20222, CVE-2021-20262, CVE-2021-21290, C ...

security-snyk-clojure-action This action runs snyk on clojure repo, using leningen to generate a pomxml file For the V2 action add the following secrets: TWINGATE_PUBLIC_REPO_KEY in public repos and TWINGATE_KEY private repos Inputs snykToken (required) This input is the secret snyk token snykOrg (not required) The organization in snyk to send results to snykProject (not requi

CWE-770 https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONDATAFORMAT-1047329 https://github.com/FasterXML/jackson-dataformats-binary/commit/de072d314af8f5f269c8abec6930652af67bc8e6 https://github.com/FasterXML/jackson-dataformats-binary/issues/186 https://www.oracle.com/security-alerts/cpujul2022.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983664 https://nvd.nist.gov https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2021-134/index.html

CVE-2020-28491

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect