Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2019-9658
HistoryMar 11, 2019 - 5:29 a.m.

CVE-2019-9658

2019-03-1105:29:00
CWE-611
[email protected]
web.nvd.nist.gov
73
cve-2019-9658
checkstyle
nvd
external dtds

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.4%

JSON

Checkstyle before 8.18 loads external DTDs by default.

Affected configurations

NVD
Node
checkstylecheckstyleRange<8.18
Node
debiandebian_linuxMatch8.0
Node
fedoraprojectfedoraMatch28
OR
fedoraprojectfedoraMatch29
CPENameOperatorVersion
checkstyle:checkstylecheckstylelt8.18

References

Related

nvd 2
openvas 5
fedora 3
debian 2
cvelist 2
osv 5
veracode 1
github 2
prion 2
debiancve 2
nessus 4
ubuntucve 2
cve 1
redhatcve 1
nvd
nvd
CVE-2019-9658
2019-03-11 05:29:00
CVE-2019-10782
2020-01-30 23:15:10
openvas
openvas
Debian: Security Advisory (DLA-1768-1)
2019-04-29 00:00:00
Fedora Update for checkstyle FEDORA-2019-a3f67e2364
2019-04-12 00:00:00
Fedora Update for checkstyle FEDORA-2019-4696630d6f
2019-05-21 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: checkstyle-8.0-4.1.fc29
2019-04-12 01:16:28
[SECURITY] Fedora 30 Update: checkstyle-8.0-7.fc30
2019-05-21 01:10:03
[SECURITY] Fedora 28 Update: checkstyle-8.0-4.1.fc28
2019-04-11 18:43:22
debian
debian
[SECURITY] [DLA 1768-1] checkstyle security update
2019-04-28 18:31:07
[SECURITY] [DLA 2099-1] checkstyle security update
2020-02-10 15:55:38
cvelist
cvelist
CVE-2019-9658
2019-03-11 04:00:00
CVE-2019-10782
2020-01-30 22:16:00
osv
osv
checkstyle - security update
2019-04-28 00:00:00
CVE-2019-9658
2019-03-11 05:29:00
Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle
2019-03-14 15:39:14
veracode
veracode
XML External Entity (XXE)
2019-03-12 05:56:51
github
github
Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle
2019-03-14 15:39:14
XML external entity (XXE) processing ('external-parameter-entities' feature was not fully disabled))
2020-01-31 18:00:07
prion
prion
Default credentials
2019-03-11 05:29:00
Xxe
2020-01-30 23:15:00
debiancve
debiancve
CVE-2019-9658
2019-03-11 05:29:00
CVE-2019-10782
2020-01-30 23:15:10
nessus
nessus
Debian DLA-1768-1 : checkstyle security update
2019-04-29 00:00:00
Fedora 28 : checkstyle (2019-a3f67e2364)
2019-04-12 00:00:00
Fedora 29 : checkstyle (2019-e4405b4c9f)
2019-04-12 00:00:00
ubuntucve
ubuntucve
CVE-2019-9658
2019-03-11 00:00:00
CVE-2019-10782
2020-01-30 00:00:00
cve
cve
CVE-2019-10782
2020-01-30 23:15:10
redhatcve
redhatcve
CVE-2019-10782
2020-07-30 17:43:29

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.4%

JSON
Related for CVE-2019-9658
nvd2openvas5fedora3debian2cvelist2osv5veracode1github2prion2debiancve2nessus4ubuntucve2cve1redhatcve1