Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-7839

Опубликовано: 25 нояб. 2014
Источник: debian
EPSS Низкий

Описание

DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external entity (XXE) attacks via unspecified vectors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
resteasyfixed3.0.6-2package

Примечания

  • https://issues.jboss.org/browse/RESTEASY-1130

EPSS

Процентиль: 79%
0.01262
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2014-7839

ubuntu
около 11 лет назад

DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external entity (XXE) attacks via unspecified vectors.

redhat логотип

CVE-2014-7839

redhat
около 11 лет назад

DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external entity (XXE) attacks via unspecified vectors.

nvd логотип

CVE-2014-7839

nvd
около 11 лет назад

DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external entity (XXE) attacks via unspecified vectors.

github логотип

GHSA-pc54-pchm-xcw6

github
больше 3 лет назад

XML External Entity Reference in RESTEasy

EPSS

Процентиль: 79%
0.01262
Низкий