CVE-2014-3629

Опубликовано: 17 нояб. 2014

Источник: debian

EPSS Низкий

Описание

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
qpid-cpp	removed			package
qpid-cpp	no-dsa		wheezy	package

Примечания

https://issues.apache.org/jira/secure/attachment/12680198/QPID-6218.patch

EPSS

Процентиль: 82%

0.01744

Низкий

Связанные уязвимости

CVE-2014-3629

ubuntu

около 11 лет назад

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

CVE-2014-3629

redhat

больше 11 лет назад

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

CVE-2014-3629

nvd

около 11 лет назад

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

GHSA-mm2c-whrj-39qm

github

больше 3 лет назад

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

EPSS

Процентиль: 82%

0.01744

Низкий