[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2 by devopsadmin12 · Pull Request #2 · devopsadmin12/WebGoat-Jira

devopsadmin12 · 2023-02-23T04:22:06Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 174 versions ahead of your current version.
The recommended version was released 25 days ago, on 2023-01-29.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-2421244	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72447	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72445	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72446	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917	555/1000 Why? Has a fix available, CVSS 8.1	Mature
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015	555/1000 Why? Has a fix available, CVSS 8.1	Mature
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-31507	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-31573	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32043	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32044	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32111	555/1000 Why? Has a fix available, CVSS 8.1	No Known Exploit
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426	555/1000 Why? Has a fix available, CVSS 8.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

…o 2.14.2 Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2. See this package in Maven Repository: https://mvnrepository.com/artifact/com.fasterxml.jackson.core/jackson-databind/ See this project in Snyk: https://app.snyk.io/org/devopsadmin12/project/a7c838cf-a77c-49e9-bad7-7dc966da8c07?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2#2

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2#2
devopsadmin12 wants to merge 1 commit intomasterfrom
snyk-upgrade-b8ed52cb0c13d7d815145968a341e4b2

devopsadmin12 commented Feb 23, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

devopsadmin12 commented Feb 23, 2023

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.0.4 to 2.14.2.

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants