report-ui icon indicating copy to clipboard operation
report-ui copied to clipboard
verified publisher icon alejandro-du

Security vulnerability in transitive dependency (jackson-databind)

Open McPringle opened this issue 3 years ago • 0 comments

report-ui:4.0.2 provides transitive vulnerable dependency com.fasterxml.jackson.core:jackson-databind:2.13.4

  • CVE-2022-42003: Deserialization of Untrusted Data vulnerability pending CVSS allocation

Risk: High (7.5 of 10)

McPringle avatar Nov 11 '22 16:11 McPringle