Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2016-7051

Published: 14/04/2017 Updated: 10/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 8.6 | Impact Score: 4 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Jackson-dataformat-xml

Vulnerability Summary

XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) prior to 2.7.8 and 2.8.x prior to 2.8.4 allows remote malicious users to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD.

Vulnerable Product Search on Vulmon Subscribe to Product

fasterxml jackson-dataformat-xml 2.8.3

fasterxml jackson-dataformat-xml 2.8.0

fasterxml jackson-dataformat-xml 2.8.1

fasterxml jackson-dataformat-xml

fasterxml jackson-dataformat-xml 2.8.2

References

CWE-611CWE-918https://bugzilla.redhat.com/show_bug.cgi?id=1378673http://www.securityfocus.com/bid/97688https://github.com/FasterXML/jackson-dataformat-xml/issues/211https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook