Skip to main content
Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
co.elastic.apm/apm-agent-java 0.1.2 | Vuln… | Sonatype Guide
Get full component data and automated fixes with Sonatype Guide.
Sign up for free
maven
co.elastic.apm
apm-agent-java
0.1.2
apm-agent-java 0.1.2
Latest
co.elastic.apm
Published
Apr 16, 2018
•
Policy
compliance
maven Registry
Developer Trust Score
Recommended Version:
x.y.z
Recommended upgrade that meets your policy.
Compare Versions
Overview
Overview
Versions
2
Versions
2
Vulnerabilities
15
Vulnerabilities
15
Dependencies
0
Dependencies
0
Reset filters
Severity
Critical
(2)
High
(0)
Medium
(0)
Low
(0)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
9.3
sonatype-2020-001837
com.fasterxml.jackson.core/jackson-databind - Deserialization gadget enables RCE via shiro-core JndiObjectFactory
affected
Severity
Critical
Published
Jun 4, 2026
9.8
CVE-2018-7489
FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper, bypassing a blacklist that is ineffective if the c3p0 libraries are available in the classpath.
affected
Severity
Critical
Published
Mar 13, 2018
