Skip to content

Update dependency org.slf4j:slf4j-api to v1.7.36 #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mend-5034428 wants to merge 1 commit into
base: master
Choose a base branch
from

Update dependency org.slf4j:slf4j-api to v1.7.36

2725848
Select commit
Loading
Failed to load commit list.
Open

Update dependency org.slf4j:slf4j-api to v1.7.36 #1

Update dependency org.slf4j:slf4j-api to v1.7.36
2725848
Select commit
Loading
Failed to load commit list.
Mend/5034428 / Mend Security Check failed Mar 16, 2025 in 18m 21s

Security Report

The Security Check found 62 vulnerabilities.

CVE Severity CVSS Score Exploit Maturity EPSS Vulnerable Library Suggested Fix Issue
CVE-2018-14721

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 10.0 Not Defined 0.8% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.7.9.5,2.8.11.3,2.9.7 None
CVE-2020-9548

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.6% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.7,2.8.11.6,2.9.10.4 None
CVE-2020-9547

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.6% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.7,2.8.11.6,2.9.10.4 None
CVE-2020-9546

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.3 None
CVE-2020-8840

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 1.2% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.3 None
CVE-2019-20330

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.6% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.7,2.8.11.5,2.9.10.2 None
CVE-2019-17531

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10.1 None
CVE-2019-17267

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.6% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.8.11.5,2.9.10 None
CVE-2019-16943

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10.1 None
CVE-2019-16942

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10.1 None
CVE-2019-16335

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10 None
CVE-2019-14893

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 2.2% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 None
CVE-2019-14892

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.4% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10 None
CVE-2019-14540

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.6% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10 None
CVE-2019-14379

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.8% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.6,2.8.11.4,2.9.9.2 None
CVE-2019-10202

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 2.1% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.0.0 None
CVE-2018-19362

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: 2.9.8 None
CVE-2018-19361

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.8 None
CVE-2018-19360

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.8 None
CVE-2018-14720

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.7 None
CVE-2018-14719

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 2.4% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.7 None
CVE-2018-14718

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Critical 9.8 Not Defined 12.2% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.7 None
CVE-2020-11113

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4;2.10.0 None
CVE-2020-11112

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4,2.10.0 None
CVE-2020-11111

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4,2.10.0 None
CVE-2020-10969

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.8.11.6;com.fasterxml.jackson.core:jackson-databind:2.7.9.7 None
CVE-2020-10968

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: jackson-databind-2.9.10.4 None
CVE-2020-10673

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 None
CVE-2020-10672

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.8 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: jackson-databind-2.9.10.4 None
CVE-2021-20190

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind-2.9.10.7 None
CVE-2020-36189

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36188

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36187

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36186

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36185

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36184

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36183

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36182

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36181

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36180

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-36179

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.8% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-35728

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-35491

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-35490

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 None
CVE-2020-24750

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.4% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.6 None
CVE-2020-24616

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.70000005% jackson-databind-2.9.6.jar Upgrade to version: 2.9.10.6 None
CVE-2020-14195

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 1.7% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.5 None
CVE-2020-14062

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 1.4000001% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 None
CVE-2020-14061

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 1.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 None
CVE-2020-14060

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 3.2% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 None
CVE-2020-11620

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 2.1% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 None
CVE-2020-11619

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 2.0% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 None
CVE-2020-10650

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 8.1 Not Defined 0.8% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 None
WS-2022-0468

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> jackson-databind-2.9.6.jar (Root Library)

   -> ❌ jackson-core-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined jackson-core-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-core:2.15.0 None
CVE-2022-42004

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.13.4 None
CVE-2022-42003

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.12.7.1,2.13.4.2 None
CVE-2020-36518

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.5% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.12.6.1,2.13.2.1 None
CVE-2020-25649

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.2% jackson-databind-2.9.6.jar Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.4,2.9.10.7,2.10.5.1,2.11.0.rc1 None
CVE-2019-14439

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.2% jackson-databind-2.9.6.jar Upgrade to version: 2.9.9.2 None
CVE-2019-12086

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

High 7.5 Not Defined 0.3% jackson-databind-2.9.6.jar Upgrade to version: 2.9.9 None
CVE-2019-12814

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Medium 5.9 Not Defined 3.2% jackson-databind-2.9.6.jar Upgrade to version: 2.7.9.6, 2.8.11.4, 2.9.9.1, 2.10.0 None
CVE-2019-12384

Path to dependency file: /enum-deserializer-test-databind-296/pom.xml

Path to vulnerable library: /enum-deserializer-test-databind-296/pom.xml

Dependency Hierarchy:

-> ❌ jackson-databind-2.9.6.jar (Vulnerable Library)

Medium 5.9 Not Defined 44.5% jackson-databind-2.9.6.jar Upgrade to version: 2.9.9.1 None

Total libraries scanned: 5
Scan token: b68c55c5fa0b4654a6c4b3b0db10c856
View more details on Mend/5034428