SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER Jackson databind deserialization remote code execution attempt
This event is generated when an authenticated remote attacker attempts to exploit a vulnerable version of FasterXML Jackson-Databind. Impact: Allows unauthorized disclosure of information Details: The vulnerability is due to improper validation of maliciously crafted JSON handled by the readValue method of the ObjectMapper. Ease of Attack: Simple
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-17485 |
Loading description
|