An issue was discovered jackson-databind thru 2.15.2...
Unreviewed
Published
Jun 14, 2023
to the GitHub Advisory Database
•
Updated Nov 5, 2023
Description
Published by the National Vulnerability Database
Jun 14, 2023
Published to the GitHub Advisory Database
Jun 14, 2023
Last updated
Nov 5, 2023
An issue was discovered jackson-databind thru 2.15.2 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies.
References