VulnerableCode Package Details - pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.14.0-rc1

Search for packages

Vulnerability	Summary	Fixed by
VCID-213j-gkjs-aaab Aliases: CVE-2023-35116	DISPUTED jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker.	2.15.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.16.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-213j-gkjs-aaab
Aliases:
CVE-2023-35116

** DISPUTED ** jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker.

2.15.3
Affected by 1 other vulnerability.

2.16.0
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-t7e4-g3fr-aaan	Deserialization of Untrusted Data in FasterXML jackson-databind	CVE-2022-42003 GHSA-jjjh-jjxp-wpff

Vulnerability

Summary

Aliases

VCID-t7e4-g3fr-aaan

Deserialization of Untrusted Data in FasterXML jackson-databind

CVE-2022-42003
GHSA-jjjh-jjxp-wpff

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:34:18.088840+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	36.1.3
2025-06-20T16:34:00.209183+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	36.1.3
2025-06-03T23:13:13.592351+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	36.1.0
2025-06-03T23:12:54.549660+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	36.1.0
2025-06-02T23:10:13.092963+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	36.1.2
2025-06-02T23:09:54.192519+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	36.1.2
2025-04-03T21:18:18.211089+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	36.0.0
2025-04-03T21:18:00.847128+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	36.0.0
2025-03-29T10:49:06.972309+00:00	GHSA Importer	Fixing	VCID-t7e4-g3fr-aaan	None	36.0.0
2025-02-18T01:01:58.880587+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	35.1.0
2025-02-18T01:01:57.798153+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	35.1.0
2024-04-24T02:39:18.813535+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	34.0.0rc4
2024-04-24T02:39:17.777313+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	34.0.0rc4
2024-04-23T23:44:41.157701+00:00	GHSA Importer	Fixing	VCID-t7e4-g3fr-aaan	None	34.0.0rc4
2024-01-10T05:14:37.543239+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	34.0.0rc2
2024-01-10T05:14:36.512439+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	34.0.0rc2
2024-01-10T01:47:02.398107+00:00	GHSA Importer	Fixing	VCID-t7e4-g3fr-aaan	None	34.0.0rc2
2024-01-03T22:02:27.792863+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.fasterxml.jackson.core/jackson-databind/CVE-2023-35116.yml	34.0.0rc1
2024-01-03T22:02:26.788565+00:00	GitLab Importer	Affected by	VCID-213j-gkjs-aaab	None	34.0.0rc1

2025-06-20T16:34:18.088840+00:00

GitLab Importer

Affected by

Next non-vulnerable version	2.16.0
Latest non-vulnerable version	2.16.0
Risk	3.4