Posted on

Oracle JD Edwards EnterpriseOne Tools 9.2 jackson-databind privilege escalation

A vulnerability has been found in Oracle JD Edwards EnterpriseOne Tools 9.2 (Enterprise Resource Planning Software) and classified as very critical. Affected by this vulnerability is an unknown functionality of the component jackson-databind. Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.