Redhat Jackson-Mapper-Asl vulnerabilities
2 known vulnerabilities affecting redhat/jackson-mapper-asl.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2019-10172CRITICALCVSS 9.8v1.9.x2019-11-18
CVE-2019-10172 [CRITICAL] CWE-611 CVE-2019-10172: A flaw was found in org
A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but in different classes.
cvelistv5
CVE-2016-3720CRITICALCVSS 9.8v1.9.x2016-06-10
CVE-2016-3720 [CRITICAL] CWE-611 CVE-2016-3720: XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka j
XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka jackson-dataformat-xml) allows attackers to have unspecified impact via unknown vectors.
nvd