All versions of com.puppycrawl.tools:checkstyle before 8.29 are vulnerable to XML External Entity (XXE) Injection due to an incomplete fix for CVE-2019-9658.
[
{
"product": "com.puppycrawl.tools:checkstyle",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "all versions before 8.29"
}
]
}
]