The vulnerability of the FasterXML function in the Jackson-Databind Java library for JSON file grammar analysis allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the FasterXML function in the Jackson-Databind Java library for JSON file grammar analysis is related to the inability to prevent the OpenJPA class from being polymorphic deserialization. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or caus...

UBUNTU-CVE-2018-19361

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the openjpa class from polymorphic deserialization...