Lucene search

CVE-2014-2296

🗓️ 20 Jul 2018 17:00:29Reported by [email protected]Type

XML external entity (XXE) vulnerability in Jasig CAS serve

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Prion	Xxe	20 Jul 201817:29	–	prion
CVE	CVE-2014-2296	20 Jul 201817:29	–	cve
Cvelist	CVE-2014-2296	20 Jul 201817:00	–	cvelist
Veracode	XML External Entity (XXE)	23 Jul 201808:32	–	veracode

Nvd

Node

apereo cas_serverRange<3.4.12.1

apereo cas_serverRange3.5–3.5.2.1

Source	Link
jasig	www.jasig.275507.n4.nabble.com/CAS-3-5-2-1-and-3-4-12-1-Security-Releases-td4662444.html
vigilance	www.vigilance.fr/vulnerability/Jasig-CAS-Server-bypassing-authentication-via-Google-Accounts-Integration-14512

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jul 2018 17:29Current

8.9High risk

Vulners AI Score8.9

CVSS26.8

CVSS38.8

EPSS0.00368

CWE-611