Polymorphic Typing issue in FasterXML jackson-databind
Critical severity
GitHub Reviewed
Published
Sep 23, 2019
to the GitHub Advisory Database
•
Updated Sep 13, 2023
Package
Affected versions
>= 2.9.0, < 2.9.10
>= 2.7.0, < 2.8.11.5
< 2.6.7.3
Patched versions
2.9.10
2.8.11.5
2.6.7.3
Description
Published by the National Vulnerability Database
Sep 15, 2019
Reviewed
Sep 19, 2019
Published to the GitHub Advisory Database
Sep 23, 2019
Last updated
Sep 13, 2023
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10, 2.8.11.5, and 2.6.7.3. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540.
References