Description

A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but in different classes.

Remediation

References

CVE-2019-10172

Related Vulnerabilities

WordPress Plugin Academy LMS-eLearning and online course solution for WordPress Privilege Escalation (1.9.19)

WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2)

WordPress Plugin WP Taxonomy Import Cross-Site Scripting (1.0.4)

WordPress Plugin RokIntroScroller Multiple Vulnerabilities (1.8)

PleskLin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)

Severity

High

Classification

CVE-2019-10172 CWE-611 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities