Guest

Preview Tool

Cisco Bug: CSCvt72592 - Multiple vulnerabilities in FasterXML jackson-databind 2.x before 2.9.10.4

Last Modified

Sep 28, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.2(0.470) 2.2(0.916) 2.2(1.184) 3.0(0.362)

Description (partial)

Symptom:
This product includes Third-party Software that is affected by the
vulnerabilities identified by the following Common Vulnerability and
Exposures (CVE) IDs:

CVE-2017-15095, CVE-2018-1000873, CVE-2018-11307, CVE-2018-14718, CVE-2018-5968, CVE-2018-7489, CVE-2019-14540, CVE-2019-14893, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943, CVE-2019-17267, CVE-2019-17531, CVE-2019-20330, CVE-2020-10672, CVE-2020-10673, CVE-2020-10968, CVE-2020-10969, CVE-2020-11111, CVE-2020-11112, CVE-2020-11113, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.