jackson-databind-2.8.11.3.jar|CVE-2018-19362
Created by: armorcodegithubpreprod[bot]
FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the jboss-common-core class from polymorphic deserialization. Vulnerable Software: cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.2:::::::* cpe:2.3:a:fasterxml:jackson-databind:::::::: cpe:2.3:a:oracle:business_process_management_suite:12.1.3.0.0:::::::* cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:18.8:::::::* cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.2:::::::* cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:::::::: cpe:2.3:a:oracle:primavera_unifier:::::::: cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:::::::* cpe:2.3:a:oracle:primavera_unifier:18.8:::::::* cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:15.1:::::::* cpe:2.3:a:oracle:primavera_unifier:16.1:::::::* cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:16.1:::::::* cpe:2.3:a:oracle:primavera_unifier:16.2:::::::* cpe:2.3:a:oracle:retail_workforce_management_software:1.60.9.0.0:::::::* cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:::::::*
File Path: \Profiles\ptrovatelli.m2\repository\com\fasterxml\jackson\core\jackson-databind\2.8.11.3\jackson-databind-2.8.11.3.jar