Known Vulnerabilities for Jackson-databind by FasterXML
Listed below are 10 of the newest known vulnerabilities associated with "Jackson-databind" by "FasterXML".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54518 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54517 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54516 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54515 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.8.... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54514 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.0.... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54513 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54512 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-50193 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.13... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2023-35116 json | ** DISPUTED ** jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via ... | 4.7 - MEDIUM | 2023-06-14 | 2023-12-07 |
| CVE-2022-42004 json | In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._... | 7.5 - HIGH | 2022-10-02 | 2022-12-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fasterxml | Jackson-databind | 2.9.9.4 | |||
| Application | Fasterxml | Jackson-databind | 2.9.9.3 | |||
| Application | Fasterxml | Jackson-databind | 2.9.9.2 | |||
| Application | Fasterxml | Jackson-databind | 2.9.9.1 | |||
| Application | Fasterxml | Jackson-databind | 2.9.9 | |||
| Application | Fasterxml | Jackson-databind | 2.9.8 | |||
| Application | Fasterxml | Jackson-databind | 2.9.7 | |||
| Application | Fasterxml | Jackson-databind | 2.9.6 | |||
| Application | Fasterxml | Jackson-databind | 2.9.5 | |||
| Application | Fasterxml | Jackson-databind | 2.9.4 | |||
| Application | Fasterxml | Jackson-databind | 2.9.3 | |||
| Application | Fasterxml | Jackson-databind | 2.9.2 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.8 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.7 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.6 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.5 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.4 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.3 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.2 | |||
| Application | Fasterxml | Jackson-databind | 2.9.10.1 |