CVE-2025-49128 | FasterXML jackson-core up to 2.12.x JsonLocation._appendSourceDesc information exposure (GHSA-wf8f-6423-gfxg / EUVD-2025-17366)

A vulnerability was found in FasterXML jackson-core up to 2.12.x and classified as problematic. This issue affects the function JsonLocation._appendSourceDesc. The manipulation leads to information exposure through error message.

The identification of this vulnerability is CVE-2025-49128. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More