aero.loretta:sdk-api-client (>=1.0.0 <=1.0.3), ai.entrolution:thylacine_2.13 (>=0.11.0 <=0.16.0) +9889 more potentially affected by CVE-2016-7051 via com.fasterxml.jackson.dataformat:jackson-dataformat-xml (>=2.0.0-RC2 <=2.7.7)

com.fasterxml.jackson.dataformat:jackson-dataformat-xml MAVEN version =2.0.0-RC2, =1.0.0, =0.11.0, =0.13.0, =0.5.1, =0.5.1, =0.5.1, =0.7.0, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.10.0 and more Source cves: CVE-2016-7051 Source advisory: OSV:GHSA-7C2R-3JQF-C9RW...

GHSA-7C2R-3JQF-C9RW jackson-dataformat-xml vulnerable to server side request forgery (SSRF)

Versions of jackson-dataformat-xml prior to 2.7.8 and prior to 2.8.4 allow remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

jackson-dataformat-xml vulnerable to server side request forgery (SSRF)

Versions of jackson-dataformat-xml prior to 2.7.8 and prior to 2.8.4 allow remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

GHSA-HMQ6-FRV3-4727 jackson-dataformat-xml vulnerable to XML external entity (XXE)

XML external entity XXE vulnerability in XmlMapper in the Data format extension for Jackson aka jackson-dataformat-xml allows attackers to have unspecified impact via unknown vectors...

aero.loretta:sdk-api-client (>=1.0.0 <=1.0.3), ai.entrolution:thylacine_2.13 (>=0.11.0 <=0.16.0) +9867 more potentially affected by CVE-2016-3720 via com.fasterxml.jackson.dataformat:jackson-dataformat-xml (>=2.0.0-RC2 <=2.7.3)

com.fasterxml.jackson.dataformat:jackson-dataformat-xml MAVEN version =2.0.0-RC2, =1.0.0, =0.11.0, =0.13.0, =0.5.1, =0.5.1, =0.5.1, =0.7.0, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.10.0 and more Source cves: CVE-2016-3720 Source advisory: OSV:GHSA-HMQ6-FRV3-4727...

CVE-2016-7051

XmlMapper in the Jackson XML dataformat component aka jackson-dataformat-xml before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

DEBIAN-CVE-2016-7051

XmlMapper in the Jackson XML dataformat component aka jackson-dataformat-xml before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

Server side request forgery (ssrf)

XmlMapper in the Jackson XML dataformat component aka jackson-dataformat-xml before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

CVE-2016-7051

CVE-2016-7051 affects jackson-dataformat-xml (XmlMapper). The vulnerability is a server-side request forgery (SSRF) flaw related to DTD handling, present in XmlMapper before 2.7.8 and in 2.8.x before 2.8.4. Impact is described as potential SSRF; exploit details are not provided in the initial doc...

CVE-2016-7051

XmlMapper in the Jackson XML dataformat component aka jackson-dataformat-xml before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery SSRF attacks via vectors related to a DTD...

Fedora 22 : jackson-dataformat-xml (2016-d708261ce2)

Security fix for CVE-2016-3720 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

Xxe

XML external entity XXE vulnerability in XmlMapper in the Data format extension for Jackson aka jackson-dataformat-xml allows attackers to have unspecified impact via unknown vectors...

UBUNTU-CVE-2016-3720

XML external entity XXE vulnerability in XmlMapper in the Data format extension for Jackson aka jackson-dataformat-xml allows attackers to have unspecified impact via unknown vectors...

CVE-2016-3720

XML external entity XXE vulnerability in XmlMapper in the Data format extension for Jackson aka jackson-dataformat-xml allows attackers to have unspecified impact via unknown vectors...

CVE-2016-3720

CVE-2016-3720 describes an XML External Entity (XXE) vulnerability in Jackson’s Data format extension, jackson-dataformat-xml, specifically in XmlMapper. The connected documents corroborate a related XXE issue affecting jackson-mapper-asl and related Codehaus Jackson libraries, and reference warn...

Fedora Update for jackson-dataformat-xml FEDORA-2016-d708261ce2

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for jackson-dataformat-xml FEDORA-2016-f2e2b178ea

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated jackson-dataformat-xml packages fix CVE-2016-3720

Updated jackson-dataformat-xml packages fix security vulnerability: It was reported that XmlMapper in jackson-dataformat-xml is vulnerable to XXE attack "Improper Restriction of XML External Entity Reference" CVE-2016-3720...

MGASA-2016-0175 Updated jackson-dataformat-xml packages fix CVE-2016-3720

Updated jackson-dataformat-xml packages fix security vulnerability: It was reported that XmlMapper in jackson-dataformat-xml is vulnerable to XXE attack "Improper Restriction of XML External Entity Reference" CVE-2016-3720...

Fedora 24 : jackson-dataformat-xml-2.6.3-3.fc24 (2016-13b4cae9df)

Security fix for CVE-2016-3720 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...