- CVE ID
- sonatype-2021-4682
- CWE
- N/A
- CVE Description
- jackson-databind - Denial of Service (DoS)
- Published
- Dec 28, 2021
- CVSS Score & Severity
7.5High
- CVSS Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- EPSS Score
- 0%
- KEV Status
Not in KEV Catalog: No known exploits
- Vulnerable Methods
com/fasterxml/jackson/databind/node/NodeSerialization.readExternal(Ljava/io/ObjectInput;)VJVMVulnerable params: 0
- Source
- Sonatype
