CVE-2017-14868

CVE-2017-14868

Restlet Framework before 2.3.11, when using SimpleXMLProvider, allows remote attackers to access arbitrary files via an XXE attack in a REST API HTTP request. This affects use of the Jax-rs extension.

CVE-2017-14868

Restlet Framework before 2.3.11, when using SimpleXMLProvider, allows remote attackers to access arbitrary files via an XXE attack in a REST API HTTP request. This affects use of the Jax-rs extension.

CVE-2017-14868

Restlet Framework before 2.3.11, when using SimpleXMLProvider, allows ...

GHSA-2mp8-qvqm-3xwq

Restlet Framework Ja-rs extension is vulnerable to XXE when using SimpleXMLProvider