[jira] [Created] (CASSANDRA-18630) jackson-databind-2.13.2.2.jar vulnerability: CVE-2023-35116

Brandon Williams (Jira) Tue, 27 Jun 2023 04:33:05 -0700

Brandon Williams created CASSANDRA-18630:
--------------------------------------------


             Summary: jackson-databind-2.13.2.2.jar vulnerability: 
CVE-2023-35116
                 Key: CASSANDRA-18630
                 URL: https://issues.apache.org/jira/browse/CASSANDRA-18630
             Project: Cassandra
          Issue Type: Bug
            Reporter: Brandon Williams


https://nvd.nist.gov/vuln/detail/CVE-2023-35116

{noformat}
 An issue was discovered jackson-databind thru 2.15.2 allows attackers to cause 
a denial of service or other unspecified impacts via crafted object that uses 
cyclic dependencies. NOTE: the vendor's perspective is that the product is not 
intended for use with untrusted input.
{noformat}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Created] (CASSANDRA-18630) jackson-databind-2.13.2.2.jar vulnerability: CVE-2023-35116

Reply via email to