vulnerability
Red Hat: CVE-2020-36518: denial of service via a large depth of nested objects (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | 2022-03-11 | 2023-05-15 | 2025-03-17 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
2022-03-11
Added
2023-05-15
Modified
2025-03-17
Description
jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
Solution(s)
redhat-upgrade-apache-commons-collectionsredhat-upgrade-apache-commons-langredhat-upgrade-apache-commons-netredhat-upgrade-bea-stax-apiredhat-upgrade-fasterxml-oss-parentredhat-upgrade-glassfish-fastinfosetredhat-upgrade-glassfish-jaxb-apiredhat-upgrade-glassfish-jaxb-coreredhat-upgrade-glassfish-jaxb-runtimeredhat-upgrade-glassfish-jaxb-txw2redhat-upgrade-idm-jssredhat-upgrade-idm-jss-debuginforedhat-upgrade-idm-jss-javadocredhat-upgrade-idm-ldapjdkredhat-upgrade-idm-ldapjdk-javadocredhat-upgrade-idm-pki-acmeredhat-upgrade-idm-pki-baseredhat-upgrade-idm-pki-base-javaredhat-upgrade-idm-pki-caredhat-upgrade-idm-pki-kraredhat-upgrade-idm-pki-serverredhat-upgrade-idm-pki-symkeyredhat-upgrade-idm-pki-symkey-debuginforedhat-upgrade-idm-pki-toolsredhat-upgrade-idm-pki-tools-debuginforedhat-upgrade-idm-tomcatjssredhat-upgrade-jackson-annotationsredhat-upgrade-jackson-bomredhat-upgrade-jackson-coreredhat-upgrade-jackson-databindredhat-upgrade-jackson-jaxrs-json-providerredhat-upgrade-jackson-jaxrs-providersredhat-upgrade-jackson-module-jaxb-annotationsredhat-upgrade-jackson-modules-baseredhat-upgrade-jackson-parentredhat-upgrade-jakarta-commons-httpclientredhat-upgrade-javassistredhat-upgrade-javassist-javadocredhat-upgrade-jss-debugsourceredhat-upgrade-pki-core-debuginforedhat-upgrade-pki-core-debugsourceredhat-upgrade-pki-jackson-annotationsredhat-upgrade-pki-jackson-coreredhat-upgrade-pki-jackson-databindredhat-upgrade-pki-jackson-jaxrs-json-providerredhat-upgrade-pki-jackson-jaxrs-providersredhat-upgrade-pki-jackson-module-jaxb-annotationsredhat-upgrade-pki-servlet-engineredhat-upgrade-python3-idm-pkiredhat-upgrade-relaxngdatatyperedhat-upgrade-resteasyredhat-upgrade-resteasy-javadocredhat-upgrade-slf4jredhat-upgrade-slf4j-jdk14redhat-upgrade-stax-exredhat-upgrade-velocityredhat-upgrade-xalan-j2redhat-upgrade-xerces-j2redhat-upgrade-xml-commons-apisredhat-upgrade-xml-commons-resolverredhat-upgrade-xmlstreambufferredhat-upgrade-xsom
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.