Search for packages
| purl | pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.12.7.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-213j-gkjs-aaab
Aliases: CVE-2023-35116 |
** DISPUTED ** jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-gqhw-ngh8-aaap
Aliases: CVE-2022-42004 GHSA-rgv9-q543-rqg4 |
Deserialization of Untrusted Data in FasterXML jackson-databind |
Affected by 2 other vulnerabilities. |
|
VCID-t7e4-g3fr-aaan
Aliases: CVE-2022-42003 GHSA-jjjh-jjxp-wpff |
Deserialization of Untrusted Data in FasterXML jackson-databind |
Affected by 2 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-t7e4-g3fr-aaan | Deserialization of Untrusted Data in FasterXML jackson-databind |
CVE-2022-42003
GHSA-jjjh-jjxp-wpff |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-20T16:34:18.067416+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 36.1.3 |
| 2025-06-20T16:34:00.184247+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 36.1.3 |
| 2025-06-03T23:13:13.569114+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 36.1.0 |
| 2025-06-03T23:12:54.528625+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 36.1.0 |
| 2025-06-02T23:10:13.068558+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 36.1.2 |
| 2025-06-02T23:09:54.168356+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 36.1.2 |
| 2025-04-03T21:18:18.146360+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 36.0.0 |
| 2025-04-03T21:18:00.782295+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 36.0.0 |
| 2025-03-29T10:49:07.297705+00:00 | GHSA Importer | Fixing | VCID-t7e4-g3fr-aaan | None | 36.0.0 |
| 2025-02-18T01:01:58.817537+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 35.1.0 |
| 2025-02-18T01:01:57.735357+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 35.1.0 |
| 2024-05-17T23:16:25.547943+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml | 34.0.0rc4 |
| 2024-05-17T23:16:24.636951+00:00 | GitLab Importer | Affected by | VCID-213j-gkjs-aaab | None | 34.0.0rc4 |
| 2024-05-17T19:41:53.056744+00:00 | GHSA Importer | Affected by | VCID-gqhw-ngh8-aaap | None | 34.0.0rc4 |
| 2024-05-17T19:41:39.852374+00:00 | GHSA Importer | Affected by | VCID-t7e4-g3fr-aaan | None | 34.0.0rc4 |