Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-24750

Disclosure Date: September 17, 2020 (last updated November 28, 2024)
FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0