← Back

Jackson Modules Java8

jackson-modules-java8

Vendor: Fasterxml • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-1000873
3Fasterxml
NetappOracle
6Active Iq Unified Manager
ClusterwareDatabase Server+3 more
Nov 21, 2024
Dec 20, 2018
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service (DoS). This attack appear to be exploitable via The...Show more
Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service (DoS). This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the nanoseconds field of a time value. This vulnerability appears to have been fixed in 2.9.8.Show less