Security Advisory

CVE-2020-25649

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-03 16:16:50

Last updated 2024-08-04 15:40:36

Assigner redhat

State PUBLISHED

Description

A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.

← Browse all CVEs View on cve.org ↗