Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Apache Camel's XSLT component allows remote attackers to read arbitrary files

🗓️ 16 Oct 2018 23:26:13Reported by GitHub Advisory DatabaseType 
github
 github🔗 github.com👁 26 Views

Apache Camel XSLT component vulnerabilit

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Refs
ReporterTitlePublishedViews
Family
CVE		CVE-2014-0002
21 Mar 201404:38
–cve
Cvelist		CVE-2014-0002
20 Mar 201419:00
–cvelist
Prion		Xxe
21 Mar 201404:38
–prion
seebug.org		Apache Camel XSLT XML外部实体漏洞(CVE-2014-0002)
5 Mar 201400:00
–seebug
Check Point Advisories		Apache Camel XSLT Component XML External Entity (CVE-2014-0002)
3 Apr 201400:00
–checkpoint_advisories
Check Point Advisories		Multiple Products XML Public External Entity Information Disclosure (CVE-2013-3617; CVE-2013-4152; CVE-2013-6429; CVE-2014-0002; CVE-2014-0423)
29 Sep 201300:00
–checkpoint_advisories
Check Point Advisories		Multiple Products XML System External Entity Information Disclosure (CVE-2013-3617; CVE-2013-4152; CVE-2013-6429; CVE-2014-0002; CVE-2014-0054; CVE-2014-0423)
29 Sep 201300:00
–checkpoint_advisories
NVD		CVE-2014-0002
21 Mar 201404:38
–nvd
OSV		GHSA-2FW5-RVF2-JQ56 Apache Camel's XSLT component allows remote attackers to read arbitrary files
16 Oct 201823:13
–osv
RedHat Linux		(RHSA-2014:0323) Important: Red Hat JBoss Fuse/A-MQ 6.0.0 security update
24 Mar 201417:55
–redhat
Rows per page
Vulners
Node
org.apache.camelcamel-coreRange2.12.0–2.12.3
OR
org.apache.camelcamel-coreRange<2.11.4
SourceLink
nvdwww.nvd.nist.gov/vuln/detail/CVE-2014-0002
listswww.lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E
camelwww.camel.apache.org/security-advisories.data/CVE-2014-0002.txt.asc
rhnwww.rhn.redhat.com/errata/RHSA-2014-0371.html
rhnwww.rhn.redhat.com/errata/RHSA-2014-0372.html
listswww.lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E
webwww.web.archive.org/web/20200229061309/http://www.securityfocus.com/bid/65901
githubwww.github.com/apache/camel/commit/2ec54fa0c13ae65bdcccff764af081a79fcc05f
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
16 Oct 2018 23:13Current
9.1High risk
Vulners AI Score9.1
CVSS27.5
EPSS0.34804
apache camelxsltremote attackersarbitrary filesxmlentity declarationxxe issuesoftware
26
.json
Report