[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-14060":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":27,"downstream":28,"duplicates":43,"related":44,"reserved_at":9,"published_at":48,"modified_at":49,"state":50,"summary":51,"references_raw":60,"kevs":140,"epss":141,"epss_history":144,"metrics":395,"affected":408},"CVE-2020-14060","FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool (aka apache/drill).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-502","Deserialization of Untrusted Data","The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.","weakness","Draft","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-586","Object Injection",[],[],[26],"GHSA-j823-4qch-3rgm",[],[29,31,33,35,37,39,41],{"_key":30},"UBUNTU-CVE-2020-14060",{"_key":32},"DLA-2270-1",{"_key":34},"MGASA-2021-0153",{"_key":36},"DEBIAN-CVE-2020-14060",{"_key":38},"RHBA-2020:1494",{"_key":40},"RHBA-2020:3255",{"_key":42},"USN-4813-1",[],[45,46],{"_key":34},{"_key":47},"CGA-GQQC-GVP4-F22P","2020-06-14T20:46:47.000Z","2024-08-04T12:32:14.684Z","Analyzed",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":53,"epss_score":54,"severity":55,"severity_score":56,"severity_version":57,"severity_source":58,"severity_vector":59,"severity_status":50},false,"low",0.08934,"high",8.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[61,71,75,81,85,90,94,98,102,106,111,115,119,123,128,132,136],{"url":62,"sources":63,"tags":66},"https://github.com/FasterXML/jackson-databind/issues/2688",[64,58,65],"cve.org","osv_maven",[67,68,69,70],"X Refsource MISC","Patch","Third Party Advisory","WEB",{"url":72,"sources":73,"tags":74},"https://medium.com/%40cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",[64,58,65],[67,69,70],{"url":76,"sources":77,"tags":78},"https://lists.debian.org/debian-lts-announce/2020/07/msg00001.html",[64,58,65],[79,80,69,70],"Mailing List","X Refsource MLIST",{"url":82,"sources":83,"tags":84},"https://www.oracle.com/security-alerts/cpuoct2020.html",[64,58,65],[67,69,70],{"url":86,"sources":87,"tags":88},"https://security.netapp.com/advisory/ntap-20200702-0003/",[64,58],[89,69],"X Refsource CONFIRM",{"url":91,"sources":92,"tags":93},"https://www.oracle.com/security-alerts/cpujan2021.html",[64,58,65],[67,69,70],{"url":95,"sources":96,"tags":97},"https://www.oracle.com/security-alerts/cpuApr2021.html",[64,58,65],[67,69,70],{"url":99,"sources":100,"tags":101},"https://www.oracle.com//security-alerts/cpujul2021.html",[64,58,65],[67,69,70],{"url":103,"sources":104,"tags":105},"https://www.oracle.com/security-alerts/cpuoct2021.html",[64,58,65],[67,69,70],{"url":107,"sources":108,"tags":109},"https://nvd.nist.gov/vuln/detail/CVE-2020-14060",[65],[110],"Advisory",{"url":112,"sources":113,"tags":114},"https://github.com/FasterXML/jackson-databind/commit/08fbfacf89a4a4c026a6227a1b470ab7a13e2e88",[65],[70],{"url":116,"sources":117,"tags":118},"https://github.com/FasterXML/jackson-databind/commit/ac7232e3f9004bdb4f11dcb5bc6c1fadf074f5f7",[65],[70],{"url":120,"sources":121,"tags":122},"https://github.com/FasterXML/jackson-databind/commit/d1c67a0396e84c08d0558fbb843b5bd1f26e1921",[65],[70],{"url":124,"sources":125,"tags":126},"https://github.com/FasterXML/jackson-databind",[65],[127],"PACKAGE",{"url":129,"sources":130,"tags":131},"https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",[65],[70],{"url":133,"sources":134,"tags":135},"https://security.netapp.com/advisory/ntap-20200702-0003",[65],[70],{"url":137,"sources":138,"tags":139},"https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314",[65],[70],[],{"date":142,"score":54,"percentile":143},"2026-06-04",0.92736,[145,149,152,155,158,161,164,166,169,172,175,178,181,184,186,190,193,196,199,202,205,208,211,213,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,262,265,267,270,273,275,278,280,282,285,287,290,293,296,299,302,304,307,310,313,316,319,322,325,328,330,333,336,339,341,343,346,349,351,354,357,359,361,363,366,369,372,375,378,380,383,386,388,390,392],{"date":146,"score":147,"percentile":148},"2025-11-04",0.08718,0.92107,{"date":150,"score":147,"percentile":151},"2025-11-05",0.92108,{"date":153,"score":147,"percentile":154},"2025-11-06",0.9211,{"date":156,"score":147,"percentile":157},"2025-11-07",0.92113,{"date":159,"score":147,"percentile":160},"2025-11-08",0.92111,{"date":162,"score":147,"percentile":163},"2025-11-09",0.92109,{"date":165,"score":147,"percentile":154},"2025-11-10",{"date":167,"score":147,"percentile":168},"2025-11-11",0.92116,{"date":170,"score":147,"percentile":171},"2025-11-12",0.92121,{"date":173,"score":147,"percentile":174},"2025-11-13",0.92124,{"date":176,"score":147,"percentile":177},"2025-11-14",0.92126,{"date":179,"score":147,"percentile":180},"2025-11-15",0.92122,{"date":182,"score":147,"percentile":183},"2025-11-16",0.92129,{"date":185,"score":147,"percentile":183},"2025-11-17",{"date":187,"score":188,"percentile":189},"2025-11-18",0.15076,0.93974,{"date":191,"score":188,"percentile":192},"2025-11-19",0.93977,{"date":194,"score":188,"percentile":195},"2025-11-20",0.93981,{"date":197,"score":147,"percentile":198},"2025-11-21",0.92138,{"date":200,"score":147,"percentile":201},"2025-11-22",0.92137,{"date":203,"score":147,"percentile":204},"2025-11-23",0.92142,{"date":206,"score":147,"percentile":207},"2025-11-24",0.92144,{"date":209,"score":147,"percentile":210},"2025-11-25",0.92146,{"date":212,"score":147,"percentile":210},"2025-11-26",{"date":214,"score":147,"percentile":207},"2025-11-27",{"date":216,"score":147,"percentile":217},"2025-11-28",0.92136,{"date":219,"score":147,"percentile":220},"2025-11-29",0.92154,{"date":222,"score":147,"percentile":223},"2025-11-30",0.92152,{"date":225,"score":147,"percentile":226},"2025-12-01",0.92194,{"date":228,"score":147,"percentile":229},"2025-12-02",0.92198,{"date":231,"score":147,"percentile":232},"2025-12-03",0.92201,{"date":234,"score":147,"percentile":235},"2025-12-04",0.92158,{"date":237,"score":147,"percentile":238},"2025-12-05",0.92159,{"date":240,"score":147,"percentile":241},"2025-12-06",0.92165,{"date":243,"score":147,"percentile":244},"2025-12-07",0.92163,{"date":246,"score":147,"percentile":247},"2025-12-08",0.92164,{"date":249,"score":147,"percentile":250},"2025-12-09",0.92168,{"date":252,"score":147,"percentile":253},"2025-12-10",0.92177,{"date":255,"score":147,"percentile":256},"2025-12-11",0.9218,{"date":258,"score":147,"percentile":259},"2025-12-12",0.92184,{"date":261,"score":147,"percentile":253},"2025-12-13",{"date":263,"score":147,"percentile":264},"2025-12-14",0.92174,{"date":266,"score":147,"percentile":253},"2025-12-15",{"date":268,"score":147,"percentile":269},"2025-12-16",0.92185,{"date":271,"score":147,"percentile":272},"2025-12-17",0.9219,{"date":274,"score":147,"percentile":226},"2025-12-18",{"date":276,"score":147,"percentile":277},"2025-12-19",0.92197,{"date":279,"score":147,"percentile":277},"2025-12-20",{"date":281,"score":147,"percentile":277},"2025-12-21",{"date":283,"score":147,"percentile":284},"2025-12-22",0.92196,{"date":286,"score":147,"percentile":229},"2025-12-23",{"date":288,"score":147,"percentile":289},"2025-12-24",0.92202,{"date":291,"score":147,"percentile":292},"2025-12-25",0.92208,{"date":294,"score":147,"percentile":295},"2025-12-26",0.92209,{"date":297,"score":147,"percentile":298},"2025-12-27",0.92236,{"date":300,"score":147,"percentile":301},"2025-12-28",0.92206,{"date":303,"score":147,"percentile":289},"2025-12-29",{"date":305,"score":147,"percentile":306},"2025-12-30",0.92207,{"date":308,"score":147,"percentile":309},"2025-12-31",0.92214,{"date":311,"score":147,"percentile":312},"2026-01-01",0.92269,{"date":314,"score":147,"percentile":315},"2026-01-02",0.92266,{"date":317,"score":147,"percentile":318},"2026-01-03",0.92264,{"date":320,"score":147,"percentile":321},"2026-01-04",0.92221,{"date":323,"score":147,"percentile":324},"2026-01-05",0.9222,{"date":326,"score":147,"percentile":327},"2026-01-06",0.92222,{"date":329,"score":147,"percentile":327},"2026-01-07",{"date":331,"score":147,"percentile":332},"2026-01-08",0.92225,{"date":334,"score":147,"percentile":335},"2026-01-09",0.92229,{"date":337,"score":147,"percentile":338},"2026-01-10",0.9223,{"date":340,"score":147,"percentile":332},"2026-01-11",{"date":342,"score":147,"percentile":332},"2026-01-12",{"date":344,"score":147,"percentile":345},"2026-01-13",0.92224,{"date":347,"score":147,"percentile":348},"2026-01-14",0.92235,{"date":350,"score":147,"percentile":298},"2026-01-15",{"date":352,"score":147,"percentile":353},"2026-01-16",0.92239,{"date":355,"score":147,"percentile":356},"2026-01-17",0.92241,{"date":358,"score":147,"percentile":348},"2026-01-18",{"date":360,"score":147,"percentile":298},"2026-01-19",{"date":362,"score":147,"percentile":353},"2026-01-20",{"date":364,"score":147,"percentile":365},"2026-01-21",0.92244,{"date":367,"score":147,"percentile":368},"2026-01-22",0.92247,{"date":370,"score":147,"percentile":371},"2026-01-23",0.92254,{"date":373,"score":147,"percentile":374},"2026-01-24",0.92261,{"date":376,"score":147,"percentile":377},"2026-01-25",0.92263,{"date":379,"score":147,"percentile":315},"2026-01-26",{"date":381,"score":147,"percentile":382},"2026-01-27",0.92268,{"date":384,"score":147,"percentile":385},"2026-01-28",0.92271,{"date":387,"score":147,"percentile":385},"2026-01-29",{"date":389,"score":147,"percentile":312},"2026-01-30",{"date":391,"score":147,"percentile":382},"2026-01-31",{"date":393,"score":147,"percentile":394},"2026-02-01",0.92309,[396,406],{"source":58,"cvss_v2_0":397,"cvss_v3_0":9,"cvss_v3_1":402,"cvss_v4_0":9},{"baseScore":398,"baseSeverity":9,"vectorString":399,"impactScore":400,"exploitabilityScore":401},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":56,"baseSeverity":403,"vectorString":59,"impactScore":404,"exploitabilityScore":405},"HIGH",9.8,5.6,{"source":65,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":407,"cvss_v4_0":9},{"baseScore":56,"baseSeverity":9,"vectorString":59,"impactScore":404,"exploitabilityScore":405},[409,425,434,445,451,458,474,480,486,494,501,507,512],{"ecosystem":9,"name":410,"vendor":411,"product":410,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":413},"jackson-databind","fasterxml","a",[414,422],{"version":415,"is_range":416,"range_type":417,"version_start":418,"version_start_type":419,"version_end":420,"version_end_type":421,"fixed_in":9},"gte2.9.0_lt2.9.10.5",true,"cpe","2.9.0","including","2.9.10.5","excluding",{"version":423,"is_range":416,"range_type":417,"version_start":424,"version_start_type":419,"version_end":420,"version_end_type":421,"fixed_in":9},"gte2.0.0_lt2.9.10.5","2.0.0",{"ecosystem":426,"name":427,"vendor":428,"product":410,"cpe_part":9,"purl_type":429,"purl_namespace":428,"purl_name":410,"source":9,"versions":430},"Maven","com.fasterxml.jackson.core:jackson-databind","com.fasterxml.jackson.core","maven",[431],{"version":432,"is_range":416,"range_type":433,"version_start":418,"version_start_type":419,"version_end":420,"version_end_type":421,"fixed_in":9},"gte2_9_0_lt2_9_10_5","ecosystem",{"ecosystem":9,"name":435,"vendor":436,"product":437,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":438},"active iq unified manager","netapp","active_iq_unified_manager",[439,442],{"version":440,"is_range":416,"range_type":417,"version_start":441,"version_start_type":419,"version_end":9,"version_end_type":9,"fixed_in":9},"gte7.3","7.3",{"version":443,"is_range":416,"range_type":417,"version_start":444,"version_start_type":419,"version_end":9,"version_end_type":9,"fixed_in":9},"gte9.5","9.5",{"ecosystem":9,"name":446,"vendor":436,"product":447,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":448},"steelstore cloud integrated storage","steelstore_cloud_integrated_storage",[449],{"version":450,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":452,"vendor":453,"product":454,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":455},"agile plm","oracle","agile_plm",[456],{"version":457,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.6",{"ecosystem":9,"name":459,"vendor":453,"product":460,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":461},"banking digital experience","banking_digital_experience",[462,464,466,468,470,472],{"version":463,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.1",{"version":465,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.2",{"version":467,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.3",{"version":469,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.1",{"version":471,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.2",{"version":473,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.1",{"ecosystem":9,"name":475,"vendor":453,"product":476,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"communications calendar server","communications_calendar_server",[478],{"version":479,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0.4.0",{"ecosystem":9,"name":481,"vendor":453,"product":482,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":483},"communications contacts server","communications_contacts_server",[484],{"version":485,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0.5.0",{"ecosystem":9,"name":487,"vendor":453,"product":488,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":489},"communications diameter signaling router","communications_diameter_signaling_router",[490],{"version":491,"is_range":416,"range_type":417,"version_start":492,"version_start_type":419,"version_end":493,"version_end_type":419,"fixed_in":9},"gte8.0.0_lte8.2.2","8.0.0","8.2.2",{"ecosystem":9,"name":495,"vendor":453,"product":496,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":497},"communications element manager","communications_element_manager",[498],{"version":499,"is_range":416,"range_type":417,"version_start":500,"version_start_type":419,"version_end":493,"version_end_type":419,"fixed_in":9},"gte8.2.0_lte8.2.2","8.2.0",{"ecosystem":9,"name":502,"vendor":453,"product":503,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":504},"communications evolved communications application server","communications_evolved_communications_application_server",[505],{"version":506,"is_range":52,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.1",{"ecosystem":9,"name":508,"vendor":453,"product":509,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":510},"communications session report manager","communications_session_report_manager",[511],{"version":499,"is_range":416,"range_type":417,"version_start":500,"version_start_type":419,"version_end":493,"version_end_type":419,"fixed_in":9},{"ecosystem":9,"name":513,"vendor":453,"product":514,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":515},"communications session route manager","communications_session_route_manager",[516],{"version":499,"is_range":416,"range_type":417,"version_start":500,"version_start_type":419,"version_end":493,"version_end_type":419,"fixed_in":9}]