Lucene search

CVE-2014-2296

🗓️ 20 Jul 2018 17:00:29Reported by mitreType

CVE-2014-2296 XXE vulnerability in Jasig CAS serve

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
prion	Xxe	20 Jul 201817:29	–	prion
nvd	CVE-2014-2296	20 Jul 201817:29	–	nvd
cvelist	CVE-2014-2296	20 Jul 201817:00	–	cvelist
veracode	XML External Entity (XXE)	23 Jul 201808:32	–	veracode

Nvd

Node

apereo cas_serverRange<3.4.12.1

apereo cas_serverRange3.5–3.5.2.1

Source	Link
jasig	www.jasig.275507.n4.nabble.com/CAS-3-5-2-1-and-3-4-12-1-Security-Releases-td4662444.html
vigilance	www.vigilance.fr/vulnerability/Jasig-CAS-Server-bypassing-authentication-via-Google-Accounts-Integration-14512

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jul 2018 17:29Current

8.8High risk

Vulners AI Score8.8

CVSS26.8

CVSS38.8

EPSS0.00368

CWE-611