Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ghillert/boot-jackson-cve

Reproduction of CVE-2020-36518 in Spring Boot 2.5.10
https://github.com/ghillert/boot-jackson-cve

Last synced: about 4 hours ago
JSON representation

Reproduction of CVE-2020-36518 in Spring Boot 2.5.10

Host: GitHub
URL: https://github.com/ghillert/boot-jackson-cve
Owner: ghillert
Created: 2022-03-21T21:13:28.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2022-03-21T22:16:59.000Z (almost 3 years ago)
Last Synced: 2024-11-06T21:49:33.810Z (about 2 months ago)
Language: Java
Size: 58.6 KB
Stars: 0
Watchers: 3
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # Reproduction of CVE-2020-36518 in Spring Boot 2.5.10

Execute:

```bash

./mvnw clean verify

```

It will fail with:

```

[ERROR] Failed to execute goal org.owasp:dependency-check-maven:7.0.0:check (default) on project jackson-demo:

[ERROR]

[ERROR] One or more dependencies were identified with vulnerabilities that have a CVSS score greater than or equal to '7.0':

[ERROR]

[ERROR] jackson-databind-2.12.6.jar: CVE-2020-36518(7.5)

[ERROR]

[ERROR] See the dependency-check report for more details.

[ERROR]

```