FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
No history.
Information
Published : 2020-01-03 04:15
Updated : 2024-02-04 20:39
NVD link : CVE-2019-20330
Mitre link : CVE-2019-20330
CVE.ORG link : CVE-2019-20330
JSON object : View
Products Affected
oracle
- banking_platform
- goldengate_application_adapters
- primavera_unifier
- communications_instant_messaging_server
- webcenter_portal
- retail_sales_audit
- siebel_ui_framework
- global_lifecycle_management_opatch
- retail_xstore_point_of_service
- communications_billing_and_revenue_management
- trace_file_analyzer
- enterprise_manager_base_platform
- siebel_engineering_-_installer_\&_deployment
- communications_evolved_communications_application_server
- retail_merchandising_system
- communications_cloud_native_core_network_slice_selection_function
- goldengate_stream_analytics
- jd_edwards_enterpriseone_tools
- communications_contacts_server
- customer_management_and_segmentation_foundation
- weblogic_server
- jd_edwards_enterpriseone_orchestrator
- communications_network_charging_and_control
netapp
- steelstore_cloud_integrated_storage
- snapcenter
- service_level_manager
- active_iq_unified_manager
- oncommand_api_services
debian
- debian_linux
fasterxml
- jackson-databind
CWE
CWE-502
Deserialization of Untrusted Data