A Polymorphic Typing issue was... CVE-2019-14439

5.0 AV AC AU C I A
发布: 2019-07-30
修订: 2020-10-28

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before This occurs when Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the logback jar in the classpath.