A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2020-12-03T16:16:50
Updated: 2024-08-04T15:40:36.648Z
Reserved: 2020-09-16T00:00:00
Link: CVE-2020-25649
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-12-03T17:15:12.503
Modified: 2024-11-21T05:18:20.343
Link: CVE-2020-25649
Redhat