CVE-2017-1000061

Опубликовано: 17 июл. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5.8

CVSS3: 7.1

Описание

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service

Релиз	Статус	Примечание
artful	not-affected	1.2.24-3
bionic	not-affected	1.2.24-3
cosmic	not-affected	1.2.24-3
devel	not-affected	1.2.24-3
disco	not-affected	1.2.24-3
eoan	not-affected	1.2.24-3
esm-infra-legacy/trusty	released	1.2.18-2ubuntu1+esm1
esm-infra/bionic	not-affected	1.2.24-3
esm-infra/focal	not-affected	1.2.24-3
esm-infra/xenial	released	1.2.20-2ubuntu4+esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 68%

0.00591

Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

CVE-2017-1000061

CVSS3: 6.5

redhat

больше 8 лет назад

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service

CVE-2017-1000061

CVSS3: 7.1

nvd

больше 8 лет назад

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service

CVE-2017-1000061

CVSS3: 7.1

debian

больше 8 лет назад

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansio ...

GHSA-jmhh-hg4r-g2c2

CVSS3: 7.1

github

больше 3 лет назад

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service

ELSA-2017-2492

oracle-oval

около 8 лет назад

ELSA-2017-2492: xmlsec1 security update (MODERATE)

EPSS

Процентиль: 68%

0.00591

Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3

CVE-2017-1000061

Описание

Пакет xmlsec1

Ссылки на источники

Связанные уязвимости