CVE-2019-14379

SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used, leading to remote code execution.
Source: NIST
CVE-2019-14379

Leave a Reply

Your email address will not be published.