Description
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.hadoop.shaded.com.zaxxer.hikari.HikariConfig (aka shaded hikari-config).
Remediation
References
Related Vulnerabilities
WordPress Plugin Profile Builder-User Profile & User Registration Forms Cross-Site Scripting (2.2.4)
Oracle Database Server CVE-2008-2602 Vulnerability (CVE-2008-2602)
WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.7)
mod_ssl Other Vulnerability (CVE-2002-0082)
WordPress 2.0.5 Invalid CSRF Token Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5)