CVE-2016-3720

Properties

Published:
09.06.2016
Updated:
15.06.2016
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Product:
fedoraproject: fedora

Vulnerability description

XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka jackson-dataformat-xml) allows attackers to have unspecified impact via unknown vectors.

References:

FEDORA:http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184561.html