Description
XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka jackson-dataformat-xml) allows attackers to have unspecified impact via unknown vectors.
Remediation
References
http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184561.html
Related Vulnerabilities
CVE-2019-10808 Vulnerability in npm package utilitify
CVE-2015-8862 Vulnerability in maven package org.webjars.npm:mustache
CVE-2022-41404 Vulnerability in maven package org.ini4j:ini4j
CVE-2023-35147 Vulnerability in maven package org.jenkins-ci.plugins:aws-codecommit-trigger
CVE-2016-6346 Vulnerability in maven package org.jboss.resteasy:resteasy-jaxrs