-
Bug
-
Resolution: Fixed
-
High
-
8.8.1
-
8.08
-
1
-
Severity 1 - Critical
-
Issue Summary
Jira Server used a vulnerable version of jackson-databind .
In specific, the issue was present in FasterXML jackson-databind 2.x before 2.9.10.2 . More information here: https://nvd.nist.gov/vuln/detail/CVE-2019-20330.
Upgrade jackson-databind to at least version 2.9.10.20200103 .
Steps to Reproduce
n/a
Expected Results
n/a
Actual Results
n/a
Workaround
N/A
- relates to
-
RAID-1938 Loading...