VYPR
Critical severityNVD Advisory· Published Oct 1, 2019· Updated Aug 4, 2024

CVE-2019-10202

CVE-2019-10202

Description

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist approach that will mitigate these vulnerabilities and future ones alike.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.codehaus.jackson:jackson-mapper-aslMaven
<= 1.9.13

Affected products

44

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.