Description
XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka jackson-dataformat-xml) allows attackers to have unspecified impact via unknown vectors.
Remediation
References
http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184561.html
Related Vulnerabilities
CVE-2016-3092 Vulnerability in maven package org.apache.tomcat:tomcat-catalina
CVE-2020-7760 Vulnerability in maven package org.webjars.bowergithub.components:codemirror
CVE-2020-1950 Vulnerability in maven package org.apache.tika:tika-parsers
CVE-2022-34305 Vulnerability in maven package org.apache.tomcat:tomcat
CVE-2017-14063 Vulnerability in maven package org.asynchttpclient:async-http-client