Search for packages
| purl | pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.0 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-su7t-ac23-hke5
Aliases: CVE-2019-10202 GHSA-c27h-mcmw-48hv |
Deserialization of Untrusted Data in org.codehaus.jackson:jackson-mapper-asl A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist approach that will mitigate these vulnerabilities and future ones alike. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:59:31.932945+00:00 | GitLab Importer | Affected by | VCID-su7t-ac23-hke5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.jackson/jackson-mapper-asl/CVE-2019-10202.yml | 38.4.0 |
| 2026-04-11T23:15:05.077075+00:00 | GitLab Importer | Affected by | VCID-su7t-ac23-hke5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.jackson/jackson-mapper-asl/CVE-2019-10202.yml | 38.3.0 |
| 2026-04-02T23:23:01.889693+00:00 | GitLab Importer | Affected by | VCID-su7t-ac23-hke5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.jackson/jackson-mapper-asl/CVE-2019-10202.yml | 38.1.0 |
| 2026-04-01T17:44:06.341381+00:00 | GitLab Importer | Affected by | VCID-su7t-ac23-hke5 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.jackson/jackson-mapper-asl/CVE-2019-10202.yml | 38.0.0 |