CVE-2016-7051

Publication date

2017-04-14 18:00:00

Family

mitre

State

PUBLISHED

Description

XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD.