Lucene search

K

MitreCVELIST:CVE-2019-9628

HistoryApr 11, 2019 - 7:26 p.m.

CVE-2019-9628

2019-04-1119:26:11

mitre

www.cve.org

7.3 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

The XMLTooling library all versions prior to V3.0.4, provided with the OpenSAML and Shibboleth Service Provider software, contains an XML parsing class. Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.

References

lists.opensuse.org/opensuse-security-announce/2019-04/msg00079.html

lists.opensuse.org/opensuse-security-announce/2019-04/msg00095.html

bugs.launchpad.net/ubuntu/+source/xmltooling/+bug/1819912

security.netapp.com/advisory/ntap-20190611-0003/

shibboleth.net/community/advisories/secadv_20190311.txt

usn.ubuntu.com/3921-1/

wiki.shibboleth.net/confluence/display/SP3/SecurityAdvisories

7.3 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

Related for CVELIST:CVE-2019-9628

openvas7 github1 debiancve1 cve1 nessus7 redhatcve1 osv3 debian2 nvd1 ubuntucve1 prion1 suse2 ubuntu1