logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-14719

Description

FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization.


Affected Package


OS OS Version Package Name Package Version
Debian 12 jackson-databind 2.9.8-1
Debian 11 jackson-databind 2.9.8-1
Debian 10 jackson-databind 2.9.8-1
Debian 999 jackson-databind 2.9.8-1

Related