CVE-2018-19361

Publication date

2019-01-02 18:00:00

Family

mitre

State

PUBLISHED

Description

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the openjpa class from polymorphic deserialization.