Lucene search

Improper input validation in Apache Santuario XML Security for Java

🗓️ 27 Aug 2019 17:33:41Reported by GitHub Advisory DatabaseType

Improper input validation in Apache Santuario XML Security for Java, version 2.0.3 and 2.1.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 30
OSV	CVE-2019-12400	23 Aug 201921:15	–	osv
OSV	Improper input validation in Apache Santuario XML Security for Java	27 Aug 201917:41	–	osv
OSV	OPENSUSE-SU-2024:11693-1 xml-security-2.1.7-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	RHSA-2020:0805 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 7 security update	27 Sep 202415:10	–	osv
OSV	RHSA-2020:0806 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 8 security update	27 Sep 202415:10	–	osv
OSV	RHSA-2020:0804 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 6 security update	27 Sep 202415:10	–	osv
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2019-12400	4 Mar 202500:00	–	nessus
Tenable Nessus	RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 7 (RHSA-2020:0805)	16 Mar 202000:00	–	nessus
Tenable Nessus	RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 8 (RHSA-2020:0806)	16 Mar 202000:00	–	nessus
Tenable Nessus	RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 6 (RHSA-2020:0804)	16 Mar 202000:00	–	nessus

Vulners

Node

org.apache.santuario xmlsecRange2.0.3–2.1.4

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-12400
santuario	www.santuario.apache.org/secadv.data/CVE-2019-12400.asc
access	www.access.redhat.com/errata/RHSA-2020:0804
access	www.access.redhat.com/errata/RHSA-2020:0805
access	www.access.redhat.com/errata/RHSA-2020:0806
access	www.access.redhat.com/errata/RHSA-2020:0811
lists	www.lists.apache.org/thread.html/8e814b925bf580bc527d96ff51e72ffe5bdeaa4b8bf5b89498cab24c@%3Cdev.santuario.apache.org%3E
lists	www.lists.apache.org/thread.html/edaa7edb9c58e5f5bd0c950f2b6232b62b15f5c44ad803e8728308ce@%3Cdev.santuario.apache.org%3E
security	www.security.netapp.com/advisory/ntap-20190910-0003/
lists	www.lists.apache.org/thread.html/r107bffb06a5e27457fe9af7dfe3a233d0d36c6c2f5122f117eb7f626@%3Ccommits.tomee.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 Aug 2019 17:41Current

1.3Low risk

Vulners AI Score1.3

CVSS21.9

CVSS35.5

EPSS0.00255

CWE-20