Fasterxml Jackson-dataformat-xml version 2.8.3 : Security vulnerabilities, CVEs

cpe:2.3:a:fasterxml:jackson-dataformat-xml:2.8.3:*:*:*:*:*:*:*

CVE-2016-7051

XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD.

Max CVSS

8.6

EPSS Score

0.19%

Published

2017-04-14

Updated

2019-10-10

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Fasterxml » Jackson-dataformat-xml » 2.8.3 : Security Vulnerabilities, CVEs,

CVE-2016-7051