CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2025-49128

lowcovered by 1 sourcefirst seen 2026-07-06
A local attacker can exploit a vulnerability in FasterXML Jackson to disclose information.

CSIRTS triage

What
A vulnerability allows a local attacker to disclose information.
Who is affected
Local deployments of FasterXML Jackson are affected.
Urgency
Remediation is low urgency due to the low severity of the vulnerability.
Action
Update to the latest version of FasterXML Jackson to mitigate the issue.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2025-49128

Get an email if CVE-2025-49128 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2025-49128

CVE.org record

Embed the live status

CVE-2025-49128 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2025-49128 status](https://www.csirts.com/badge/CVE-2025-49128)](https://www.csirts.com/cve/CVE-2025-49128)