CVE-2020-24750 - Fasterxml Jackson-databind
Critical 9.8
FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration.
Affected software
Fasterxml Jackson-databind