Vulnerability Name: CVE-2020-11112 (CCN-178902) Assigned: 2019-09-28 Published: 2019-09-28 Updated: 2021-12-10 Summary: FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.proxy.provider.remoting.RmiProvider (aka apache/commons-proxy). CVSS v3 Severity: 8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H )7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C )Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): RequiredScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): HighIntegrity (I): HighAvailibility (A): High
9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H )8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C )Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): HighIntegrity (I): HighAvailibility (A): High
CVSS v2 Severity: 6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): PartialIntegrity (I): PartialAvailibility (A): Partial
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
Vulnerability Type: CWE-502 Vulnerability Consequences: Gain Access References: Source: MITRE Type: CNACVE-2020-11112 Source: XF Type: UNKNOWNfasterxml-cve202011112-code-exec(178902) Source: CCN Type: jackson-databind GIT RepositoryFasterXML jackson-databind Source: MISC Type: Patch, Third Party Advisoryhttps://github.com/FasterXML/jackson-databind/issues/2666 Source: MLIST Type: Mailing List, Third Party Advisory[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update Source: CCN Type: Medium Web siteOn Jackson CVEs: Dont Panic Here is what you need to know Source: MISC Type: Exploit, Third Party Advisoryhttps://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062 Source: CONFIRM Type: Third Party Advisoryhttps://security.netapp.com/advisory/ntap-20200403-0002/ Source: CCN Type: IBM Security Bulletin 6250535 (Spectrum Protect Plus)Vulnerabilities in Faster-XML jackson-databind affect IBM Spectrum Protect Plus (CVE-2020-10673, CVE-2020-1112, CVE-2020-11113, CVE-2020-10672, CVE-2020-10968, CVE-2020-10969, CVE-2020-11619, CVE-2020-11111, CVE-2020-11620) Source: CCN Type: IBM Security Bulletin 6251301 (Cloud Pak System)Multiple Vulnerabilities in jackson-databind shipped with IBM Cloud Pak System Source: CCN Type: IBM Security Bulletin 6255694 (Rational Rhapsody Design Manager)Multiple vulnerabilities affects IBM Jazz Foundation and IBM Engineering products. Source: CCN Type: IBM Security Bulletin 6323689 (ICP Discovery)IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-databind Source: CCN Type: IBM Security Bulletin 6324673 (Operations Analytics Predictive Insights)Vulnerabilities in Faster-XML jackson-databind affects IBM Operations Analytics Predictive Insights Source: CCN Type: IBM Security Bulletin 6324675 (Operations Analytics Predictive Insights)Vulnerabilities in Faster-XML jackson-databind affect IBM Operations Analytics Predictive Insights Source: CCN Type: IBM Security Bulletin 6324679 (Operations Analytics Predictive Insights)Vulnerabilities in Faster-XML jackson-databind affect IBM Operations Analytics Predictive Insights Source: CCN Type: IBM Security Bulletin 6324689 (Operations Analytics Predictive Insights)Vulnerabilities in Faster-XML jackson-databind affect IBM Operations Analytics Predictive Insights Source: CCN Type: IBM Security Bulletin 6324691 (Operations Analytics Predictive Insights)Vulnerabilities in Faster-XML jackson-databind affect IBM Operations Analytics Predictive Insights Source: CCN Type: IBM Security Bulletin 6324739 (Security Guardium Insights)IBM Security Guardium Insights is affected by Components with known vulnerabilities Source: CCN Type: IBM Security Bulletin 6335281 (Data Risk Manager)IBM Data Risk Manager is affected by multiple vulnerabilities Source: CCN Type: IBM Security Bulletin 6446143 (Log Analysis)Series of vulnerabilities in FasterXML jackson-databind affect Apache Solr shipped with IBM Operations Analytics - Log Analysis Source: CCN Type: IBM Security Bulletin 6454167 (Sterling B2B Integrator)Multiple Security Vulnerabilities in Jackson-Databind Affect IBM Sterling B2B Integrator Source: CCN Type: IBM Security Bulletin 6496727 (Sterling B2B Integrator)Jackson-Databind Vulnerabilities Affect the B2B API of IBM Sterling B2B Integrator Source: CCN Type: IBM Security Bulletin 6525182 (Spectrum Copy Data Management)Vulnerabilities in Jackson, jQuery, and Dom4j affect IBM Spectrum Copy Data Management Source: CCN Type: IBM Security Bulletin 6528214 (Cloud Pak for Multicloud Management)IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies Source: CCN Type: IBM Security Bulletin 6593435 (Process Mining)Vulnerability in jackson-databind affects IBM Process Mining (Multiple CVEs) Source: CCN Type: IBM Security Bulletin 6595755 (Disconnected Log Collector)IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities Source: CCN Type: IBM Security Bulletin 6597241 (Cognos Analytics)IBM Cognos Analytics has addressed multiple vulnerabilities Source: CCN Type: IBM Security Bulletin 6828455 (z/Transaction Processing Facility)z/Transaction Processing Facility is affected by multiple vulnerabilities in the jackson-databind, jackson-dataformat-xml, jackson-core, slf4j-ext, and cxf-core packages Source: CCN Type: IBM Security Bulletin 6840955 (Log Analysis)Multiple vulnerabilities in Data-Binding for Jackson shipped with IBM Operations Analytics - Log Analysis Source: CCN Type: IBM Security Bulletin 6910171 (Integration Designer)Multiple CVEs affect IBM Integration Designer Source: CCN Type: IBM Security Bulletin 6983482 (Security Verify Governance)IBM Security Verify Governance is vulnerable to a denial of service caused by multiple vulnerabilities. Source: MISC Type: Patch, Third Party Advisoryhttps://www.oracle.com/security-alerts/cpujan2021.html Source: MISC Type: Patch, Third Party Advisoryhttps://www.oracle.com/security-alerts/cpujul2020.html Source: MISC Type: Patch, Third Party Advisoryhttps://www.oracle.com/security-alerts/cpuoct2020.html Source: MISC Type: Patch, Third Party Advisoryhttps://www.oracle.com/security-alerts/cpuoct2021.html Source: CCN Type: WhiteSource Vulnerability DatabaseCVE-2020-11112 Vulnerable Configuration: Configuration 1 :cpe:/a:fasterxml:jackson-databind:*:*:*:*:*:*:*:* (Version >= 2.9.0 and < 2.9.10.4)Configuration 2 :cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:* Configuration 3 :cpe:/a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:* Configuration 4 :cpe:/a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:* OR cpe:/a:oracle:autovue_for_agile_product_lifecycle_management:21.0.2:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:18.2:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:* OR cpe:/a:oracle:banking_platform:*:*:*:*:*:*:*:* (Version >= 2.4.0 and <= 2.9.0) OR cpe:/a:oracle:communications_calendar_server:8.0.0.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_contacts_server:8.0.0.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_contacts_server:8.0.0.5.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.2.2) OR cpe:/a:oracle:communications_element_manager:*:*:*:*:*:*:*:* (Version >= 8.2.0 and <= 8.2.2) OR cpe:/a:oracle:communications_evolved_communications_application_server:7.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_instant_messaging_server:10.0.1.4.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_network_charging_and_control:6.0.1:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:* (Version >= 12.0.0 and <= 12.0.3) OR cpe:/a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:* (Version >= 8.2.0 and <= 8.2.2) OR cpe:/a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:* (Version >= 8.2.0 and <= 8.2.2) OR cpe:/a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* (Version >= 8.0.6 and <= 8.1.0) OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:* OR cpe:/a:oracle:financial_services_retail_customer_analytics:8.0.6:*:*:*:*:*:*:* OR cpe:/a:oracle:global_lifecycle_management_opatch:*:*:*:*:*:*:*:* (Version < 12.2.0.1.20) OR cpe:/a:oracle:insurance_policy_administration_j2ee:11.0.2.25:*:*:*:*:*:*:* OR cpe:/a:oracle:insurance_policy_administration_j2ee:11.1.0.15:*:*:*:*:*:*:* OR cpe:/a:oracle:jd_edwards_enterpriseone_orchestrator:*:*:*:*:*:*:*:* (Version < 9.2.4.2) OR cpe:/a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:* (Version < 9.2.4.2) OR cpe:/a:oracle:primavera_unifier:16.1:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_unifier:16.2:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_unifier:*:*:*:*:*:*:*:* (Version >= 17.7 and <= 17.12) OR cpe:/a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:* OR cpe:/a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_merchandising_system:15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_sales_audit:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_service_backbone:16.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_xstore_point_of_service:18.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_xstore_point_of_service:19.0:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:fasterxml:jackson-databind:2.9.10.3:*:*:*:*:*:*:* AND cpe:/a:ibm:rational_rhapsody_design_manager:6.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:operations_analytics_predictive_insights:1.3.6:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_plus:10.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:5.2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.0.1.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_protect_plus:10.1.5:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:data_risk_manager:2.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.5.3:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.6.0:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.1:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.2:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.3:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.4:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.5:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.6:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium_insights:2.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:log_analysis:1.3.6.1:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.1.0.0:*:*:*:standard:*:*:* OR cpe:/a:ibm:integration_designer:20.0.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_analytics:11.1.7:-:*:*:*:*:*:* OR cpe:/a:ibm:spectrum_copy_data_management:2.2.13:*:*:*:*:*:*:* OR cpe:/a:ibm:cognos_analytics:11.2.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_verify_governance:10.0:*:*:*:*:*:*:* Denotes that component is vulnerable BACK
fasterxml jackson-databind *
debian debian linux 8.0
netapp steelstore cloud integrated storage -
oracle agile plm 9.3.6
oracle autovue for agile product lifecycle management 21.0.2
oracle banking digital experience 18.1
oracle banking digital experience 18.2
oracle banking digital experience 18.3
oracle banking digital experience 19.1
oracle banking digital experience 19.2
oracle banking digital experience 20.1
oracle banking platform *
oracle communications calendar server 8.0.0.4.0
oracle communications contacts server 8.0.0.4.0
oracle communications contacts server 8.0.0.5.0
oracle communications diameter signaling router *
oracle communications element manager *
oracle communications evolved communications application server 7.1
oracle communications instant messaging server 10.0.1.4.0
oracle communications network charging and control 6.0.1
oracle communications network charging and control *
oracle communications session report manager *
oracle communications session route manager *
oracle enterprise manager base platform 13.3.0.0
oracle enterprise manager base platform 13.4.0.0
oracle financial services analytical applications infrastructure *
oracle financial services institutional performance analytics 8.0.6
oracle financial services institutional performance analytics 8.0.7
oracle financial services institutional performance analytics 8.1.0
oracle financial services price creation and discovery 8.0.6
oracle financial services price creation and discovery 8.0.7
oracle financial services retail customer analytics 8.0.6
oracle global lifecycle management opatch *
oracle insurance policy administration j2ee 11.0.2.25
oracle insurance policy administration j2ee 11.1.0.15
oracle jd edwards enterpriseone orchestrator *
oracle jd edwards enterpriseone tools *
oracle primavera unifier 16.1
oracle primavera unifier 16.2
oracle primavera unifier *
oracle primavera unifier 18.8
oracle primavera unifier 19.12
oracle retail merchandising system 15.0
oracle retail sales audit 14.1
oracle retail service backbone 14.1
oracle retail service backbone 15.0
oracle retail service backbone 16.0
oracle retail xstore point of service 15.0
oracle retail xstore point of service 16.0
oracle retail xstore point of service 17.0
oracle retail xstore point of service 18.0
oracle retail xstore point of service 19.0
oracle weblogic server 12.2.1.3.0
oracle weblogic server 12.2.1.4.0
fasterxml jackson-databind 2.9.10.3
ibm rational rhapsody design manager 6.0.2
ibm operations analytics predictive insights 1.3.6
ibm spectrum protect plus 10.1.0
ibm sterling b2b integrator 6.0.0.0
ibm sterling b2b integrator 5.2.0.0
ibm sterling b2b integrator 6.0.1.0
ibm cloud pak system 2.3.0.1
ibm spectrum protect plus 10.1.5
ibm cloud pak system 2.3.1.1
ibm data risk manager 2.0.6
ibm log analysis 1.3.5.3
ibm log analysis 1.3.6.0
ibm log analysis 1.3.1
ibm log analysis 1.3.2
ibm log analysis 1.3.3
ibm log analysis 1.3.4
ibm log analysis 1.3.5
ibm log analysis 1.3.6
ibm security guardium insights 2.0.1
ibm log analysis 1.3.6.1
ibm sterling b2b integrator 6.1.0.0
ibm integration designer 20.0.0.2
ibm cognos analytics 11.2.0
ibm cognos analytics 11.1.7
ibm spectrum copy data management 2.2.13
ibm cognos analytics 11.2.1
ibm security verify governance 10.0