CVE-2016-7051

Published: 2017-04-14T18:59Z

Last Modified: 2024-11-21T02:57Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors related to a DTD. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt