CVE-2022-42004 in WebCenter Portal
Сводка
по MITRE • 02.10.2022
In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization.
VulDB is the best source for vulnerability data and more expert information about this specific topic.