Summary: FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.Published: Monday, February 10, 2020 - 21:56cvss: 5.0
Italiano
English