CVE-2017-15095

CRITICAL

jackson-databind <2.8.10, 2.9.1 - Code Injection

Title source: llm

Description

A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.

Exploits (1)

nomisec WORKING POC

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2017-15095-jackson-databind-vulnerable

View Code ZIP pw:eip

References (32)

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/103880

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1039769

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:3189

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:3190

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0342

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0478

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0479

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0480

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0481

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0576

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0577

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1447

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1448

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1449

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1450

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1451

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:2927

... and 12 more

Scores

CVSS v3 9.8

EPSS 0.0926

EPSS Percentile 92.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-184 CWE-502

Status published

Affected Products (50)

fasterxml/jackson-databind < 2.6.7.2

fasterxml/jackson-databind

fasterxml/jackson-databind

fasterxml/jackson-databind

fasterxml/jackson-databind

fasterxml/jackson-databind

debian/debian_linux

debian/debian_linux

redhat/openshift_container_platform

redhat/satellite

redhat/satellite_capsule

redhat/openshift_container_platform

redhat/jboss_enterprise_application_platform

redhat/jboss_enterprise_application_platform

redhat/jboss_enterprise_application_platform

... and 35 more

Timeline

Published Feb 06, 2018

Tracked Since Feb 18, 2026