FasterXML Jackson-databind CVE-2018-12023 Remote Code Execution Vulnerability

FasterXML Jackson-databind is prone to a remote-code execution vulnerability.

Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.

jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9.6 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus