There is a vulnerability in jackson-databind 1.9.13,upgrade recommended

Open QiAnXinCodeSafe opened this issue 4 years ago • 0 comments

https://github.com/yahoo/cubed/blob/5311d385ac74f6b244f8406ac719012a62fb5cd3/pom.xml#L190

CVE-2019-14893 CVE-2018-7489 CVE-2019-17267 CVE-2019-16335 CVE-2019-14540 CVE-2017-15095

Recommended upgrade version：2.9.10.3

Feb 18 '21 08:02 QiAnXinCodeSafe