sergioms/jackson_deserialization_poc

Issues

• CVE-2022-42252 (High) detected in tomcat-embed-core-8.5.32.jar

  #108 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2020-5421 (Medium) detected in spring-web-5.0.8.RELEASE.jar

  #74 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2023-20863 (Medium) detected in spring-expression-5.0.8.RELEASE.jar

  #125 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2023-20861 (Medium) detected in spring-expression-5.0.8.RELEASE.jar

  #124 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2019-17563 (High) detected in tomcat-embed-core-8.5.32.jar

  #79 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2022-42003 (High) detected in jackson-databind-2.9.6.jar

  #105 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2021-42550 (Medium) detected in logback-core-1.2.3.jar, logback-classic-1.2.3.jar

  #91 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2022-42004 (High) detected in jackson-databind-2.9.6.jar

  #104 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2021-33037 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #88 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2023-6481 (High) detected in logback-core-1.2.3.jar

  #123 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2021-25122 (High) detected in tomcat-embed-core-8.5.32.jar

  #75 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2021-22096 (Medium) detected in multiple libraries

  #89 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2020-17527 (High) detected in tomcat-embed-core-8.5.32.jar

  #122 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2023-45648 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #121 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2022-22950 (Medium) detected in spring-expression-5.0.8.RELEASE.jar

  #93 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2021-43980 (Low) detected in tomcat-embed-core-8.5.32.jar

  #103 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-22970 (Medium) detected in spring-beans-5.0.8.RELEASE.jar, spring-core-5.0.8.RELEASE.jar

  #96 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-38749 (Medium) detected in snakeyaml-1.19.jar

  #102 opened 2 years ago by mend-bolt-for-github
  0

• WS-2021-0172 (Medium) detected in spring-web-5.0.8.RELEASE.jar

  #83 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2022-38750 (Medium) detected in snakeyaml-1.19.jar

  #101 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-38751 (Medium) detected in snakeyaml-1.19.jar

  #100 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2020-13943 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #78 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2019-0232 (High) detected in tomcat-embed-core-8.5.32.jar

  #81 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2022-38752 (Medium) detected in snakeyaml-1.19.jar

  #99 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2023-46589 (High) detected in tomcat-embed-core-8.5.32.jar

  #120 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2022-22965 (Critical) detected in spring-beans-5.0.8.RELEASE.jar

  #94 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2020-14195 (High) detected in jackson-databind-2.9.6.jar

  #73 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2020-10673 (High) detected in jackson-databind-2.9.6.jar

  #72 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2020-10672 (High) detected in jackson-databind-2.9.6.jar

  #71 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2020-13935 (High) detected in tomcat-embed-websocket-8.5.32.jar

  #80 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2020-13934 (High) detected in tomcat-embed-core-8.5.32.jar

  #70 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2021-30640 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #119 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2020-1935 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #77 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2019-0221 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #82 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2023-42795 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #118 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2020-36518 (High) detected in jackson-databind-2.9.6.jar

  #92 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2023-28708 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #117 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2021-24122 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #76 opened 4 years ago by mend-bolt-for-github
  0

• CVE-2021-22060 (Medium) detected in spring-core-5.0.8.RELEASE.jar

  #116 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2023-41080 (Medium) detected in tomcat-embed-core-8.5.32.jar

  #115 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2022-25857 (High) detected in snakeyaml-1.19.jar

  #98 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2023-6378 (High) detected in logback-classic-1.2.3.jar

  #114 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2021-41079 (High) detected in tomcat-embed-core-8.5.32.jar

  #87 opened 3 years ago by mend-bolt-for-github
  0

• CVE-2020-10650 (High) detected in jackson-databind-2.9.6.jar

  #97 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-27772 (High) detected in spring-boot-2.0.4.RELEASE.jar

  #95 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-1471 (Critical) detected in snakeyaml-1.19.jar

  #107 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2022-41854 (Medium) detected in snakeyaml-1.19.jar

  #106 opened 2 years ago by mend-bolt-for-github
  0

• CVE-2023-24998 (High) detected in tomcat-embed-core-8.5.32.jar

  #113 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2023-44487 (High) detected in tomcat-embed-core-8.5.32.jar

  #112 opened 9 months ago by mend-bolt-for-github
  0

• CVE-2021-44228 (High) detected in log4j-api-2.10.0.jar - autoclosed

  #90 opened 2 years ago by mend-bolt-for-github
  1