Guest

Preview Tool

Cisco Bug: CSCvt37580 - CLONE - CIAM: jackson-mapper-asl XML External Entity Vulnerability (smc-core)

Last Modified

Apr 27, 2020

Products (1)

  • Cisco Stealthwatch Enterprise

Known Affected Releases

v6.10.6 v7.0.0 v7.0.2 v7.1.0 v7.1.1 v7.1.2 v7.2.0

Description (partial)

Symptom:
Cisco Stealthwatch Endpoint Concentrator; Cisco Stealthwatch Flow Collector NetFlow; Cisco Stealthwatch Flow Collector sFlow; Cisco Stealthwatch Flow Sensor; Cisco Stealthwatch Management Console (SMC); Cisco Stealthwatch UDP Director includes a version of jackson-mapper-asl that is affected by the vulnerabilities identified by the following Common Vulnerability and Exposures (CVE) IDs:

CVE-2016-3720

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.