Fasterxml » Jackson-dataformat-xml » 2.8.3 : Security Vulnerabilities, CVEs,
XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD.
Max CVSS
8.6
EPSS Score
0.19%
Published
2017-04-14
Updated
2019-10-10
1 vulnerabilities found