Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-2205
HistoryJun 22, 2011 - 9:55 p.m.

CVE-2011-2205

2011-06-2221:55:00
CWE-399
[email protected]
web.nvd.nist.gov
33
cve-2011-2205
denial of service
memory consumption
cpu consumption
prosody
xml
remote attackers

6.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

89.9%

JSON

Prosody before 0.8.1 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

Related

prion 28
ubuntucve 13
debiancve 11
cve 28
nessus 20
openvas 22
freebsd 1
osv 3
veracode 1
cvelist 1
redhatcve 1
centos 1
github 2
redhat 1
securityvulns 1
prion
prion
Code injection
2011-06-22 21:55:00
Cross site scripting
2014-12-15 18:59:00
Design/Logic Flaw
2020-01-24 22:15:00
ubuntucve
ubuntucve
CVE-2011-2205
2011-06-22 00:00:00
CVE-2003-1564
2003-12-31 00:00:00
CVE-2017-18640
2019-12-12 00:00:00
debiancve
debiancve
CVE-2011-2205
2011-06-22 21:55:00
CVE-2015-9541
2020-01-24 22:15:00
CVE-2011-1753
2011-06-21 02:52:00
cve
cve
CVE-2003-1564
2003-12-31 05:00:00
CVE-2009-2473
2009-08-21 17:30:00
CVE-2018-16303
2018-09-01 14:29:00
nessus
nessus
EulerOS 2.0 SP8 : qt (EulerOS-SA-2020-1299)
2020-03-23 00:00:00
Rocky Linux 8 : prometheus-jmx-exporter (RLSA-2020:4807)
2023-11-07 00:00:00
EulerOS 2.0 SP3 : qt (EulerOS-SA-2020-1431)
2020-04-15 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2020-1323)
2020-03-24 00:00:00
Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2020-1669)
2020-06-16 00:00:00
RedHat Update for libxml2 RHSA-2008:0886-01
2009-03-06 00:00:00
freebsd
freebsd
ejabberd -- remote denial of service vulnerability
2011-04-27 00:00:00
osv
osv
JBossWS vulnerable to uncontrolled recursion
2022-05-13 01:39:29
CVE-2017-18640
2019-12-12 03:15:10
SnakeYAML Entity Expansion during load operation
2021-06-04 21:37:45
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:53:01
cvelist
cvelist
CVE-2020-15303
2021-06-28 12:45:09
redhatcve
redhatcve
CVE-2017-18640
2020-04-08 21:02:33
centos
centos
libxml2 security update
2008-09-12 01:23:56
github
github
JBossWS vulnerable to uncontrolled recursion
2022-05-13 01:39:29
SnakeYAML Entity Expansion during load operation
2021-06-04 21:37:45
redhat
redhat
(RHSA-2008:0886) Important: libxml2 security update
2008-09-11 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:221 ] libneon0.27
2009-08-25 00:00:00

6.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

89.9%

JSON
Related for CVE-2011-2205
prion28ubuntucve13debiancve11cve28nessus20openvas22freebsd1osv3veracode1cvelist1redhatcve1centos1github2redhat1securityvulns1