CVE-2020-36641

🗓️ 05 Jan 2023 11:29:57Reported by VulDBType

Vulnerability in gturri aXMLRPC up to 1.12.0 leading to XML external entity referenc

Reporter	Title	Published	Views	Family All 14
CNNVD	aXMLRPC 代码问题漏洞	5 Jan 202300:00	–	cnnvd
Cvelist	CVE-2020-36641 gturri aXMLRPC ResponseParser.java ResponseParser xml external entity reference	5 Jan 202311:29	–	cvelist
EUVD	EUVD-2023-0466	3 Oct 202520:07	–	euvd
Github Security Blog	aXMLRPC XML External Entity vulnerability	5 Jan 202312:30	–	github
NVD	CVE-2020-36641	5 Jan 202312:15	–	nvd
OSV	GHSA-G4R8-28FP-F255 aXMLRPC XML External Entity vulnerability	5 Jan 202312:30	–	osv
OSV	UBUNTU-CVE-2020-36641	5 Jan 202312:15	–	osv
Prion	Xxe	5 Jan 202312:15	–	prion
Positive Technologies	PT-2023-11811 · Gturri · Xmlrpc	5 Jan 202300:00	–	ptsecurity
RedhatCVE	CVE-2020-36641	22 May 202517:06	–	redhatcve

NVD

Vulners

Node

gturri axmlrpcRange≤1.12.1

[
  {
    "vendor": "gturri",
    "product": "aXMLRPC",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      },
      {
        "version": "1.7",
        "status": "affected"
      },
      {
        "version": "1.8",
        "status": "affected"
      },
      {
        "version": "1.9",
        "status": "affected"
      },
      {
        "version": "1.10",
        "status": "affected"
      },
      {
        "version": "1.11",
        "status": "affected"
      },
      {
        "version": "1.12",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/gturri/aXMLRPC/commit/456752ebc1ef4c0db980cb5b01a0b3cd0a9e0bae
github	www.github.com/gturri/aXMLRPC/releases/tag/aXMLRPC-1.14.0
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

21 Nov 2024 05:29Current

7.4High risk

Vulners AI Score7.4

CVSS 3.15.5 - 9.8

CVSS 24.9

CVSS 35.5

EPSS0.00315

CWE-611