Security Advisory

CVE-2019-14379

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-29 11:42:42

Last updated 2024-08-05 00:19:40

Assigner mitre

State PUBLISHED

Description

SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.

← Browse all CVEs View on cve.org ↗