There is a vulnerability in jackson-databind 2.9.10.53 ,upgrade recommended
QiAnXinCodeSafe opened this issue · comments
奇安信CodeSafe commented
Line 121 in fef7374
CVE-2021-20190 CVE-2020-24616 CVE-2020-36179 CVE-2020-36181 CVE-2020-36183
Recommended upgrade version:
2.9.10.8
Wolfgang Schuster commented
The latest SDK has an updated version of jackson-databind
.