[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-14062":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":27,"downstream":28,"duplicates":45,"related":46,"reserved_at":9,"published_at":50,"modified_at":51,"state":52,"summary":53,"references_raw":62,"kevs":138,"epss":139,"epss_history":142,"metrics":395,"affected":408},"CVE-2020-14062","FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool (aka xalan2).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-502","Deserialization of Untrusted Data","The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.","weakness","Draft","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-586","Object Injection",[],[],[26],"GHSA-c265-37vj-cwcc",[],[29,31,33,35,37,39,41,43],{"_key":30},"UBUNTU-CVE-2020-14062",{"_key":32},"DLA-2270-1",{"_key":34},"MGASA-2021-0153",{"_key":36},"DEBIAN-CVE-2020-14062",{"_key":38},"RHBA-2020:1494",{"_key":40},"RHBA-2020:3255",{"_key":42},"RHSA-2020:4366",{"_key":44},"USN-4813-1",[],[47,48],{"_key":34},{"_key":49},"CGA-M3RX-FVW9-VQPJ","2020-06-14T19:42:22.000Z","2024-08-04T12:32:14.668Z","Analyzed",{"cisa_kev":54,"cisa_ransomware":54,"cisa_vendor":9,"epss_severity":55,"epss_score":56,"severity":57,"severity_score":58,"severity_version":59,"severity_source":60,"severity_vector":61,"severity_status":52},false,"low",0.09872,"high",8.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[63,72,77,83,87,92,96,100,104,108,113,117,121,126,130,134],{"url":64,"sources":65,"tags":68},"https://medium.com/%40cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",[66,60,67],"cve.org","osv_maven",[69,70,71],"X Refsource MISC","Third Party Advisory","WEB",{"url":73,"sources":74,"tags":75},"https://github.com/FasterXML/jackson-databind/issues/2704",[66,60,67],[69,76,70,71],"Patch",{"url":78,"sources":79,"tags":80},"https://lists.debian.org/debian-lts-announce/2020/07/msg00001.html",[66,60,67],[81,82,70,71],"Mailing List","X Refsource MLIST",{"url":84,"sources":85,"tags":86},"https://www.oracle.com/security-alerts/cpuoct2020.html",[66,60,67],[69,70,71],{"url":88,"sources":89,"tags":90},"https://security.netapp.com/advisory/ntap-20200702-0003/",[66,60],[91,70],"X Refsource CONFIRM",{"url":93,"sources":94,"tags":95},"https://www.oracle.com/security-alerts/cpujan2021.html",[66,60,67],[69,70,71],{"url":97,"sources":98,"tags":99},"https://www.oracle.com/security-alerts/cpuApr2021.html",[66,60,67],[69,70,71],{"url":101,"sources":102,"tags":103},"https://www.oracle.com//security-alerts/cpujul2021.html",[66,60,67],[69,70,71],{"url":105,"sources":106,"tags":107},"https://www.oracle.com/security-alerts/cpuoct2021.html",[66,60,67],[69,70,71],{"url":109,"sources":110,"tags":111},"https://nvd.nist.gov/vuln/detail/CVE-2020-14062",[67],[112],"Advisory",{"url":114,"sources":115,"tags":116},"https://github.com/FasterXML/jackson-databind/commit/840eae2ca81c597a0010b2126f32dce17d384b70",[67],[71],{"url":118,"sources":119,"tags":120},"https://github.com/FasterXML/jackson-databind/commit/99001cdb6807b5c7b170ec6a9092ecbb618ae79c",[67],[71],{"url":122,"sources":123,"tags":124},"https://github.com/FasterXML/jackson-databind",[67],[125],"PACKAGE",{"url":127,"sources":128,"tags":129},"https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",[67],[71],{"url":131,"sources":132,"tags":133},"https://security.netapp.com/advisory/ntap-20200702-0003",[67],[71],{"url":135,"sources":136,"tags":137},"https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625",[67],[71],[],{"date":140,"score":56,"percentile":141},"2026-06-04",0.93135,[143,147,150,153,156,159,161,164,167,170,173,176,178,181,184,188,191,194,197,200,203,206,209,211,213,216,219,222,225,228,231,234,237,240,242,244,246,249,252,255,258,260,263,266,269,272,275,278,281,284,287,289,292,294,297,300,303,305,308,311,314,317,320,323,325,327,330,333,336,338,340,343,346,348,351,354,356,359,362,365,368,371,374,376,379,382,385,387,389,392],{"date":144,"score":145,"percentile":146},"2025-11-04",0.07706,0.91516,{"date":148,"score":145,"percentile":149},"2025-11-05",0.91515,{"date":151,"score":145,"percentile":152},"2025-11-06",0.91517,{"date":154,"score":145,"percentile":155},"2025-11-07",0.91521,{"date":157,"score":145,"percentile":158},"2025-11-08",0.91519,{"date":160,"score":145,"percentile":152},"2025-11-09",{"date":162,"score":145,"percentile":163},"2025-11-10",0.91518,{"date":165,"score":145,"percentile":166},"2025-11-11",0.91524,{"date":168,"score":145,"percentile":169},"2025-11-12",0.91528,{"date":171,"score":145,"percentile":172},"2025-11-13",0.91531,{"date":174,"score":145,"percentile":175},"2025-11-14",0.91533,{"date":177,"score":145,"percentile":172},"2025-11-15",{"date":179,"score":145,"percentile":180},"2025-11-16",0.9154,{"date":182,"score":145,"percentile":183},"2025-11-17",0.91542,{"date":185,"score":186,"percentile":187},"2025-11-18",0.1052,0.92502,{"date":189,"score":186,"percentile":190},"2025-11-19",0.92504,{"date":192,"score":186,"percentile":193},"2025-11-20",0.92509,{"date":195,"score":145,"percentile":196},"2025-11-21",0.91549,{"date":198,"score":145,"percentile":199},"2025-11-22",0.91548,{"date":201,"score":145,"percentile":202},"2025-11-23",0.91554,{"date":204,"score":145,"percentile":205},"2025-11-24",0.91555,{"date":207,"score":145,"percentile":208},"2025-11-25",0.91556,{"date":210,"score":145,"percentile":208},"2025-11-26",{"date":212,"score":145,"percentile":202},"2025-11-27",{"date":214,"score":145,"percentile":215},"2025-11-28",0.91545,{"date":217,"score":145,"percentile":218},"2025-11-29",0.91575,{"date":220,"score":145,"percentile":221},"2025-11-30",0.91573,{"date":223,"score":145,"percentile":224},"2025-12-01",0.91617,{"date":226,"score":145,"percentile":227},"2025-12-02",0.91618,{"date":229,"score":145,"percentile":230},"2025-12-03",0.9162,{"date":232,"score":145,"percentile":233},"2025-12-04",0.91569,{"date":235,"score":145,"percentile":236},"2025-12-05",0.91572,{"date":238,"score":145,"percentile":239},"2025-12-06",0.91574,{"date":241,"score":145,"percentile":236},"2025-12-07",{"date":243,"score":145,"percentile":236},"2025-12-08",{"date":245,"score":145,"percentile":218},"2025-12-09",{"date":247,"score":145,"percentile":248},"2025-12-10",0.91581,{"date":250,"score":145,"percentile":251},"2025-12-11",0.91585,{"date":253,"score":145,"percentile":254},"2025-12-12",0.91587,{"date":256,"score":145,"percentile":257},"2025-12-13",0.91576,{"date":259,"score":145,"percentile":239},"2025-12-14",{"date":261,"score":145,"percentile":262},"2025-12-15",0.91578,{"date":264,"score":145,"percentile":265},"2025-12-16",0.91592,{"date":267,"score":145,"percentile":268},"2025-12-17",0.91599,{"date":270,"score":145,"percentile":271},"2025-12-18",0.91603,{"date":273,"score":145,"percentile":274},"2025-12-19",0.91606,{"date":276,"score":145,"percentile":277},"2025-12-20",0.91608,{"date":279,"score":145,"percentile":280},"2025-12-21",0.91609,{"date":282,"score":145,"percentile":283},"2025-12-22",0.91604,{"date":285,"score":145,"percentile":286},"2025-12-23",0.9161,{"date":288,"score":145,"percentile":227},"2025-12-24",{"date":290,"score":145,"percentile":291},"2025-12-25",0.91619,{"date":293,"score":145,"percentile":227},"2025-12-26",{"date":295,"score":145,"percentile":296},"2025-12-27",0.91649,{"date":298,"score":145,"percentile":299},"2025-12-28",0.91615,{"date":301,"score":145,"percentile":302},"2025-12-29",0.91612,{"date":304,"score":145,"percentile":227},"2025-12-30",{"date":306,"score":145,"percentile":307},"2025-12-31",0.91626,{"date":309,"score":145,"percentile":310},"2026-01-01",0.91686,{"date":312,"score":145,"percentile":313},"2026-01-02",0.91682,{"date":315,"score":145,"percentile":316},"2026-01-03",0.91681,{"date":318,"score":145,"percentile":319},"2026-01-04",0.91636,{"date":321,"score":145,"percentile":322},"2026-01-05",0.91633,{"date":324,"score":145,"percentile":319},"2026-01-06",{"date":326,"score":145,"percentile":319},"2026-01-07",{"date":328,"score":145,"percentile":329},"2026-01-08",0.91637,{"date":331,"score":145,"percentile":332},"2026-01-09",0.9164,{"date":334,"score":145,"percentile":335},"2026-01-10",0.91641,{"date":337,"score":145,"percentile":322},"2026-01-11",{"date":339,"score":145,"percentile":322},"2026-01-12",{"date":341,"score":145,"percentile":342},"2026-01-13",0.91632,{"date":344,"score":145,"percentile":345},"2026-01-14",0.91646,{"date":347,"score":145,"percentile":296},"2026-01-15",{"date":349,"score":145,"percentile":350},"2026-01-16",0.91652,{"date":352,"score":145,"percentile":353},"2026-01-17",0.91655,{"date":355,"score":145,"percentile":353},"2026-01-18",{"date":357,"score":145,"percentile":358},"2026-01-19",0.91658,{"date":360,"score":145,"percentile":361},"2026-01-20",0.91661,{"date":363,"score":145,"percentile":364},"2026-01-21",0.91665,{"date":366,"score":145,"percentile":367},"2026-01-22",0.91668,{"date":369,"score":145,"percentile":370},"2026-01-23",0.91677,{"date":372,"score":145,"percentile":373},"2026-01-24",0.91683,{"date":375,"score":145,"percentile":316},"2026-01-25",{"date":377,"score":145,"percentile":378},"2026-01-26",0.91684,{"date":380,"score":145,"percentile":381},"2026-01-27",0.91688,{"date":383,"score":145,"percentile":384},"2026-01-28",0.91693,{"date":386,"score":145,"percentile":384},"2026-01-29",{"date":388,"score":145,"percentile":384},"2026-01-30",{"date":390,"score":145,"percentile":391},"2026-01-31",0.91691,{"date":393,"score":145,"percentile":394},"2026-02-01",0.91738,[396,406],{"source":60,"cvss_v2_0":397,"cvss_v3_0":9,"cvss_v3_1":402,"cvss_v4_0":9},{"baseScore":398,"baseSeverity":9,"vectorString":399,"impactScore":400,"exploitabilityScore":401},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":58,"baseSeverity":403,"vectorString":61,"impactScore":404,"exploitabilityScore":405},"HIGH",9.8,5.6,{"source":67,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":407,"cvss_v4_0":9},{"baseScore":58,"baseSeverity":9,"vectorString":61,"impactScore":404,"exploitabilityScore":405},[409,418,433,442,453,459,466,482,488,494,502,509,515,520],{"ecosystem":9,"name":410,"vendor":411,"product":412,"cpe_part":413,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":414},"debian linux","debian","debian_linux","o",[415],{"version":416,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"ecosystem":9,"name":419,"vendor":420,"product":419,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":422},"jackson-databind","fasterxml","a",[423,430],{"version":424,"is_range":425,"range_type":417,"version_start":426,"version_start_type":427,"version_end":428,"version_end_type":429,"fixed_in":9},"gte2.9.0_lt2.9.10.5",true,"2.9.0","including","2.9.10.5","excluding",{"version":431,"is_range":425,"range_type":417,"version_start":432,"version_start_type":427,"version_end":428,"version_end_type":429,"fixed_in":9},"gte2.0.0_lt2.9.10.5","2.0.0",{"ecosystem":434,"name":435,"vendor":436,"product":419,"cpe_part":9,"purl_type":437,"purl_namespace":436,"purl_name":419,"source":9,"versions":438},"Maven","com.fasterxml.jackson.core:jackson-databind","com.fasterxml.jackson.core","maven",[439],{"version":440,"is_range":425,"range_type":441,"version_start":426,"version_start_type":427,"version_end":428,"version_end_type":429,"fixed_in":9},"gte2_9_0_lt2_9_10_5","ecosystem",{"ecosystem":9,"name":443,"vendor":444,"product":445,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"active iq unified manager","netapp","active_iq_unified_manager",[447,450],{"version":448,"is_range":425,"range_type":417,"version_start":449,"version_start_type":427,"version_end":9,"version_end_type":9,"fixed_in":9},"gte7.3","7.3",{"version":451,"is_range":425,"range_type":417,"version_start":452,"version_start_type":427,"version_end":9,"version_end_type":9,"fixed_in":9},"gte9.5","9.5",{"ecosystem":9,"name":454,"vendor":444,"product":455,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":456},"steelstore cloud integrated storage","steelstore_cloud_integrated_storage",[457],{"version":458,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":460,"vendor":461,"product":462,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":463},"agile plm","oracle","agile_plm",[464],{"version":465,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.6",{"ecosystem":9,"name":467,"vendor":461,"product":468,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":469},"banking digital experience","banking_digital_experience",[470,472,474,476,478,480],{"version":471,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.1",{"version":473,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.2",{"version":475,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.3",{"version":477,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.1",{"version":479,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.2",{"version":481,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.1",{"ecosystem":9,"name":483,"vendor":461,"product":484,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":485},"communications calendar server","communications_calendar_server",[486],{"version":487,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0.4.0",{"ecosystem":9,"name":489,"vendor":461,"product":490,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":491},"communications contacts server","communications_contacts_server",[492],{"version":493,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0.5.0",{"ecosystem":9,"name":495,"vendor":461,"product":496,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":497},"communications diameter signaling router","communications_diameter_signaling_router",[498],{"version":499,"is_range":425,"range_type":417,"version_start":500,"version_start_type":427,"version_end":501,"version_end_type":427,"fixed_in":9},"gte8.0.0_lte8.2.2","8.0.0","8.2.2",{"ecosystem":9,"name":503,"vendor":461,"product":504,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":505},"communications element manager","communications_element_manager",[506],{"version":507,"is_range":425,"range_type":417,"version_start":508,"version_start_type":427,"version_end":501,"version_end_type":427,"fixed_in":9},"gte8.2.0_lte8.2.2","8.2.0",{"ecosystem":9,"name":510,"vendor":461,"product":511,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":512},"communications evolved communications application server","communications_evolved_communications_application_server",[513],{"version":514,"is_range":54,"range_type":417,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.1",{"ecosystem":9,"name":516,"vendor":461,"product":517,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":518},"communications session report manager","communications_session_report_manager",[519],{"version":507,"is_range":425,"range_type":417,"version_start":508,"version_start_type":427,"version_end":501,"version_end_type":427,"fixed_in":9},{"ecosystem":9,"name":521,"vendor":461,"product":522,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"communications session route manager","communications_session_route_manager",[524],{"version":507,"is_range":425,"range_type":417,"version_start":508,"version_start_type":427,"version_end":501,"version_end_type":427,"fixed_in":9}]