Описание
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
Ссылки
- ExploitThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- PatchThird Party Advisory
- Not Applicable
- ExploitThird Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.6 (включая)
cpe:2.3:a:jdom:jdom:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:apache:solr:8.8.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:solr:8.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:tika:1.25:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 4
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
Конфигурация 5
cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.0006
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-611
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 4 лет назад
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
CVSS3: 7.5
redhat
около 4 лет назад
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
CVSS3: 7.5
debian
около 4 лет назад
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to c ...
EPSS
Процентиль: 19%
0.0006
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-611