CVE-2017-17485

CRITICAL

Fasterxml Jackson-databind < 2.6.7.3 - Insecure Deserialization

Title source: rule

Description

FasterXML jackson-databind through 2.8.10 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper, bypassing a blacklist that is ineffective if the Spring libraries are available in the classpath.

Exploits (5)

nomisec WORKING POC 2 stars

by Al1ex · poc

https://github.com/Al1ex/CVE-2017-17485

View Code ZIP pw:eip

nomisec NO CODE

by x7iaob · poc

https://github.com/x7iaob/cve-2017-17485

View Code ZIP pw:eip

nomisec STUB

by tafamace · poc

https://github.com/tafamace/CVE-2017-17485

View Code ZIP pw:eip

nomisec WORKING POC

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2017-17485-jackson-databind-vulnerable

View Code ZIP pw:eip

nomisec

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2017-17485-jackson-databind-vulnerable

View on nomisec

References (24)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/541652/100/0/threaded

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0116

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0342

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0478

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0479

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0480

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:0481

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1447

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1448

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1449

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1450

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:1451

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:2930

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1782

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1797

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:2858

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:3149

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:3892

[Third Party Advisory] https://github.com/FasterXML/jackson-databind/issues/1855

[Third Party Advisory] https://github.com/irsl/jackson-rce-via-spel/

... and 4 more

Scores

CVSS v3 9.8

EPSS 0.7979

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-502

Status published

Affected Products (13)

fasterxml/jackson-databind < 2.6.7.3

debian/debian_linux

debian/debian_linux

redhat/jboss_enterprise_application_platform

redhat/jboss_enterprise_application_platform

redhat/jboss_enterprise_application_platform

redhat/openshift_container_platform

redhat/openshift_container_platform

netapp/e-series_santricity_os_controller < 11.60.3

netapp/e-series_santricity_web_services_proxy

netapp/oncommand_shift

netapp/snapcenter

com.fasterxml.jackson.core/jackson-databind < 2.9.4Maven

Timeline

Published Jan 10, 2018

Tracked Since Feb 18, 2026