National Cyber Warfare Foundation (NCWF) Forums


CVE-2022-42003


0 user ratings
2022-10-02 10:15:56
milo
CVEs
In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled.

CVE-2022-42003
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-42003
In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled.
2022-10-02T05:15:09Z

Source: CVEAnnouncements
Source Link: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-42003


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
CVEs



© Copyright 2012 through 2022 - National Cyber War Foundation - All rights reserved worldwide.