Lucene search

Improper Restriction of XML External Entity Reference

🗓️ 24 May 2022 00:00:00Reported by https://gitlab.com/gitlab-org/security-products/gemnasium-dbType

Improper Restriction of XML External Entity Reference in AutoUpdater.NE

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2019-20627	23 Mar 202016:55	–	cvelist
CVE	CVE-2019-20627	23 Mar 202017:15	–	cve
OSV	AutoUpdater.NET allows XXE	24 May 202217:12	–	osv
OSV	CVE-2019-20627	23 Mar 202017:15	–	osv
Github Security Blog	AutoUpdater.NET allows XXE	24 May 202217:12	–	github
Prion	Design/Logic Flaw	23 Mar 202017:15	–	prion
Veracode	XML External Entity (XXE)	24 Mar 202006:07	–	veracode
NVD	CVE-2019-20627	23 Mar 202017:15	–	nvd

Vulners

Node

nuget autoupdater.net.officialRange<1.5.8

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-20627
github	www.github.com/ravibpatel/AutoUpdater.NET/commit/1dc25f2bea6ea522dbac1512b5563c4746d539c3
github	www.github.com/ravibpatel/AutoUpdater.NET/releases/tag/v1.5.8
doyler	www.doyler.net/security-not-included/autoupdater-net-vulnerability
github	www.github.com/advisories/GHSA-75p2-hgw4-g7f7

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 May 2022 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS27.5

CVSS39.8

EPSS0.00444