https://bugzilla.redhat.com/show_bug.cgi?id=1821304
--- Comment #3 from Yadnyawalk Tale ytale@redhat.com --- Statement:
Red Hat Satellite 6 does not enable polymorphic deserialization which is a required configuration for the vulnerability to be used. We may update the jackson-databind dependency in a future release.