CVE-2024-28168

Опубликовано: 09 окт. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Improper Restriction of XML External Entity Reference ('XXE') vulnerability in Apache XML Graphics FOP.

This issue affects Apache XML Graphics FOP: 2.9.

Users are recommended to upgrade to version 2.10, which fixes the issue.

Ссылки

EPSS

Процентиль: 24%

0.00078

Низкий

7.5 High

CVSS3

Дефекты

CWE-611

Связанные уязвимости

CVE-2024-28168

CVSS3: 7.5

ubuntu

8 месяцев назад

Improper Restriction of XML External Entity Reference ('XXE') vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue.

CVE-2024-28168

CVSS3: 7.5

redhat

8 месяцев назад

CVE-2024-28168

CVSS3: 7.5

debian

8 месяцев назад

Improper Restriction of XML External Entity Reference ('XXE') vulnerab ...

SUSE-SU-2024:4054-1

suse-cvrf

7 месяцев назад

Security update for javapackages-tools, xmlgraphics-batik, xmlgraphics-commons, xmlgraphics-fop

GHSA-jqfv-jrvq-95jm

CVSS3: 5.3

github

8 месяцев назад

Apache XML Graphics FOP XML External Entity Reference ('XXE') vulnerability

EPSS

Процентиль: 24%

0.00078

Низкий

7.5 High

CVSS3

Дефекты

CWE-611