CVE-2017-7525

CRITICAL

jackson-databind <2.6.7.1, <2.7.9.1, <2.8.9 - Code Injection

Title source: llm

Description

A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.

Exploits (7)

nomisec WRITEUP 107 stars

by SecureSkyTechnology · poc

https://github.com/SecureSkyTechnology/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

View Code ZIP pw:eip

nomisec WORKING POC 18 stars

by JavanXD · poc

https://github.com/JavanXD/Demo-Exploit-Jackson-RCE

View Code ZIP pw:eip

nomisec WORKING POC 6 stars

by Ingenuity-Fainting-Goats · poc

https://github.com/Ingenuity-Fainting-Goats/CVE-2017-7525-Jackson-Deserialization-Lab

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by Dannners · poc

https://github.com/Dannners/jackson-deserialization-2017-7525

View Code ZIP pw:eip

gitlab WORKING POC

by jjp13t3rs · poc

https://gitlab.com/jjp13t3rs/jackson_deserialization_vuln

View Code ZIP pw:eip

gitlab

by java-exploit · poc

https://gitlab.com/penetration-test-learn/10vuln/java-exploit/Demo-Exploit-Jackson-RCE

nomisec WORKING POC

by Nazicc · poc

https://github.com/Nazicc/S2-055

View Code ZIP pw:eip

References (60)

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99623

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1039744

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1039947

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1040360

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1834

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1835

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1836

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1837

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1839

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:1840

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2477

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2546

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2547

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2633

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2635

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2636

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2017:2637

... and 40 more

Scores

CVSS v3 9.8

EPSS 0.7927

EPSS Percentile 99.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-184 CWE-502

Status published

Affected Products (45)

fasterxml/jackson-databind < 2.6.7.1

fasterxml/jackson-databind

fasterxml/jackson-databind

debian/debian_linux

debian/debian_linux

netapp/oncommand_balance

netapp/oncommand_performance_manager

netapp/oncommand_performance_manager

netapp/oncommand_shift

netapp/snapcenter

redhat/openshift_container_platform

redhat/virtualization

redhat/virtualization_host

redhat/jboss_enterprise_application_platform

redhat/jboss_enterprise_application_platform

... and 30 more

Timeline

Published Feb 06, 2018

Tracked Since Feb 18, 2026