VDB

GCVE-110-MAGEIA-2017-255

GCVE-110-MAGEIA-2017-255
Advisory Published
Vulnetix · Advisory published August 11, 2017
A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper (CVE-2017-7525).

Affected Products

VendorProductVersionsPlatforms
Mageiajackson-databind0 (affected), 2.7.6-1.1.mga6 (unaffected)
Mageiajackson-databind0 (affected), 2.4.3-4.1.mga5 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›