Known Vulnerabilities for Jackson by Fasterxml
Listed below are 10 of the newest known vulnerabilities associated with "Jackson" by "Fasterxml".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54518 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-54517 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-54516 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-54515 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.8.... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-54514 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.0.... | Not Provided | 2026-06-23 | 2026-06-25 |
| CVE-2026-54513 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10... | Not Provided | 2026-06-23 | 2026-07-09 |
| CVE-2026-54512 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-50193 json | jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.13... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-41837 json | Spring Data REST's Querydsl integration accepts arbitrary persistent property paths as request-parameter filter keys and does... | Not Provided | 2026-06-10 | 2026-06-30 |
| CVE-2026-41731 json | JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted packages using a prefi... | Not Provided | 2026-06-10 | 2026-06-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fasterxml | Jackson | 3.0.0 | |||
| Application | Fasterxml | Jackson | 2.9.9 | |||
| Application | Fasterxml | Jackson | 2.9.8 | |||
| Application | Fasterxml | Jackson | 2.9.7 | |||
| Application | Fasterxml | Jackson | 2.9.6 | |||
| Application | Fasterxml | Jackson | 2.9.5 | |||
| Application | Fasterxml | Jackson | 2.9.4 | |||
| Application | Fasterxml | Jackson | 2.9.3 | |||
| Application | Fasterxml | Jackson | 2.9.2 | |||
| Application | Fasterxml | Jackson | 2.9.1 | |||
| Application | Fasterxml | Jackson | 2.9.0 | |||
| Application | Fasterxml | Jackson | 2.8.9 | |||
| Application | Fasterxml | Jackson | 2.8.8 | |||
| Application | Fasterxml | Jackson | 2.8.7 | |||
| Application | Fasterxml | Jackson | 2.8.6 | |||
| Application | Fasterxml | Jackson | 2.8.5 | |||
| Application | Fasterxml | Jackson | 2.8.4 | |||
| Application | Fasterxml | Jackson | 2.8.3 | |||
| Application | Fasterxml | Jackson | 2.8.2 | |||
| Application | Fasterxml | Jackson | 2.8.11 |