Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-0250

Опубликовано: 24 мар. 2015
Источник: ubuntu
Приоритет: medium
CVSS2: 6.4

Описание

XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file.

РелизСтатусПримечание
devel

released

1.7.ubuntu-8ubuntu3
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1.7.ubuntu-8ubuntu2.14.04.1]]
lucid

ignored

end of life
precise

released

1.7.ubuntu-8ubuntu1.1
trusty

released

1.7.ubuntu-8ubuntu2.14.04.1
trusty/esm

DNE

trusty was released [1.7.ubuntu-8ubuntu2.14.04.1]
upstream

released

1.7+dfsg-5
utopic

released

1.7.ubuntu-8ubuntu2.14.10.1

Показывать по

Ссылки на источники

6.4 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-0250

redhat
больше 13 лет назад

XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file.

nvd логотип

CVE-2015-0250

nvd
почти 11 лет назад

XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file.

debian логотип

CVE-2015-0250

debian
почти 11 лет назад

XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) ...

github логотип

GHSA-wfw6-mmmp-87xm

github
больше 3 лет назад

Improper Input Validation in Apache Batik

6.4 Medium

CVSS2