CVE-2022-42004 in WebCenter PortalИнформация

Сводка

по MITRE • 02.10.2022

In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Резервировать

02.10.2022

Раскрытие

02.10.2022

Модерация

принято

Вход

4

Связать

показать

EPSS

0.02656

KEV

Нет

Деятельности

Очень низкий

Источники

Want to stay up to date on a daily basis?

Enable the mail alert feature now!