Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-6ph8-rp44-5gqr

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.

Ссылки

EPSS

Процентиль: 59%
0.00389
Низкий

CVE ID

CVE-2020-14940

Связанные уязвимости

ubuntu логотип

CVE-2020-14940

CVSS3: 7.5
ubuntu
больше 5 лет назад

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.

nvd логотип

CVE-2020-14940

CVSS3: 7.5
nvd
больше 5 лет назад

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.

debian логотип

CVE-2020-14940

CVSS3: 7.5
debian
больше 5 лет назад

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar ...

EPSS

Процентиль: 59%
0.00389
Низкий

CVE ID

CVE-2020-14940