For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Jackson-Databind Unsafe Unserialization Remote Code Execution (CVE-2017-7525, CVE-2017-15095)

Recently a new vulnerability in Jackson, a popular Java library used for parsing JSON, was published and assigned CVE-2017-7525 and later extended with CVE-2017-15095. The Jackson-databind package...
Published Dec 07, 2017
Version 1.0
ASM Advanced WAF
cve-2017-7525
security
Remco's avatar
Remco
Icon for Nimbostratus rankNimbostratus
Mar 16, 2018

I would also like to know which signatures ID is should select or which signature set.