Cisco Bug: CSCvh57898 - Multiple Vulnerabilities in jackson-databind
Aug 09, 2019
- Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM)
Known Affected Releases
DNAC1.1 DNAC1.2 DNAC1.2.10 DNAC1.3 DNAC1.4
Symptom: Tbis product includes a version of jackson-databind that is affected by the vulnerabilities identified by the following Common Vulnerability and Exposures (CVE) IDs: CVE-2017-7525, CVE-2017-15095, CVE-2017-17485, CVE-2018-5968, CVE-2018-1000873, CVE-2019-12086 This bug was opened to address the potential impact on this product. Conditions: Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases