Search for packages
Package details: pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.00
purl pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.7.00
Tags Ghost
Next non-vulnerable version 2.16.0
Latest non-vulnerable version 2.16.0
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-ay9g-1mux-aaap
Aliases:
CVE-2020-36183
GHSA-9m6f-7xcq-8vf8
Unsafe Deserialization in jackson-databind
2.9.10.8
Affected by 4 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2024-09-17T22:02:55.765435+00:00 GHSA Importer Affected by VCID-ay9g-1mux-aaap https://github.com/advisories/GHSA-9m6f-7xcq-8vf8 34.0.1
2024-01-03T17:37:43.995900+00:00 GHSA Importer Affected by VCID-ay9g-1mux-aaap https://github.com/advisories/GHSA-9m6f-7xcq-8vf8 34.0.0rc1