Cross-site Scripting (XSS)

react-bootstrap-table is vulnerable to cross-site scripting. Lack of sanitization of output from the function dangerouslySetInnerHTML allows an attacker to inject and execute malicious script in a user's browser via the dataFormat parameter when an invalid React element is returned...

CVE-2021-23398

All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting XSS via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output...

CVE-2021-23398 Cross-site Scripting (XSS)

All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting XSS via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output...

CVE-2021-23398

All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting XSS via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output...

CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-dataformat

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of FasterXML jackson-dataformat. Vulnerability Details CVEID: CVE-2020-28491 DESCRIPTION: FasterXML jackson-dataformats-binary is vulnerable to a denial of service, caused by an unchecked allocation of byte buff...

OESA-2021-1140 jackson-dataformats-binary security update

This module is a multi-module umbrella project for Jackson standard binary dataformat backends. Dataformat backends are used to support format alternatives to JSON, using general-purpose Jackson API. Formats included allow access using all 3 API styles streaming, databinding, tree model. Security...

DEBIAN-CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

Design/Logic Flaw

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

UBUNTU-CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

CVE-2020-28491

CVE-2020-28491 affects the jackson-dataformat-cbor component. An unchecked allocation of byte buffers can lead to java.lang.OutOfMemoryError. Affected versions include 0 and earlier than 2.11.4, and 2.12.0-rc1 and earlier than 2.12.1. The issue is tied to the data format CBOR handling (byte buffe...

CVE-2020-28491 Denial of Service (DoS)

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception...

PT-2021-7974 · Fasterxml +2 · Jackson Dataformat Cbor +2

Name of the Vulnerable Software and Affected Versions: com.fasterxml.jackson.dataformat:jackson-dataformat-cbor versions 0 through 2.11.4 com.fasterxml.jackson.dataformat:jackson-dataformat-cbor versions 2.12.0-rc1 through 2.12.1 Description: The issue is related to the allocation of unlimited...

FasterXML Jackson Resource Management Error Vulnerability

FasterXML Jackson is a data processing tool for Java from FasterXML, Inc. A resource management error vulnerability exists in FasterXML Jackson. The vulnerability stems from a failure to check the buffer length in jackson-dataformat-cbor resulting in an OutOfMemoryError exception being thrown. Th...

ai.hyacinth.framework:core-service-discovery-server (=0.5.24), ai.lum:odinson-rest-api_2.12 (>=0.3.1 <=0.5.0) +2196 more potentially affected by CVE-2020-28491 via com.fasterxml.jackson.dataformat:jackson-dataformat-cbor (>=2.10.0 <=2.11.3)

com.fasterxml.jackson.dataformat:jackson-dataformat-cbor MAVEN version =2.10.0, =0.3.1, =j8.2.2.0, =2.8.0, =2.8.0, =2.8.0, =2.8.0, =0.1.2, =0.1.2, =0.2.0, =0.1.2, =0.2.5 and more Source cves: CVE-2020-28491 Source advisory: SNYK:JAVA-COMFASTERXMLJACKSONDATAFORMAT-1047329...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and...

Fedora Update for jackson-dataformat-xml FEDORA-2019-df57551f6d

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

cn.home1:oss-eureka (>=1.0.6.OSS <=1.0.7.OSS), cn.home1:spring-cloud-eureka-server (=1.0.1.U1) +493 more potentially affected by CVE-2016-7051 via com.fasterxml.jackson.dataformat:jackson-dataformat-xml (>=2.8.0 <=2.8.3)

com.fasterxml.jackson.dataformat:jackson-dataformat-xml MAVEN version =2.8.0, =1.0.6.OSS, =A.1.1.1, =2.19.10.0, =1.1.4-RELEASE, =1.1.4-RELEASE, =1.1.4-RELEASE, =1.1.4-RELEASE, =1.1.4-RELEASE, =1.5.0.RELEASE, =1.5.0.RELEASE, =1.5.0.RELEASE, =1.5.1.RELEASE -...