AZL-44931 CVE-2021-33813 affecting package jdom2 2.0.6-29

🗓️ 16 Jun 2021 12:15:12Reported by GoogleType

osv

osv🔗 osv.dev

XXE vulnerability in SAXBuilder of a Java library up to version 2.0.6 allows denial of service from a request.

Reporter	Title	Published	Views	Family All 136
IBM Security Bulletins	Security Bulletin: IBM Jazz for Service Management is vulnerable due to issues in JDOM, Apache Log4j 1.x, Apache ActiveMQ and Apache Camel	24 Jun 202511:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Verify Governance - Identity Manager has multiple vulnerabilities	11 Jul 202407:21	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in JDOM affects IBM InfoSphere Information Server	14 Oct 202222:07	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities	13 Jan 202215:19	–	ibm
IBM Security Bulletins	Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.	11 Apr 202311:47	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect embedded rules in IBM Business Automation Workflow	11 Jan 202413:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Content Navigator is affected by JDOM	30 Mar 202609:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities	16 Jun 202221:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center is vulnerable to a denial of service due to JDOM (CVE-2021-33813)	13 Jun 202217:21	–	ibm
IBM Security Bulletins	Security Bulletin: ITCAM for Transactions affected by the Security vulnerability CVE-2021-33813 found in jdom-1.0.jar	30 Aug 202311:03	–	ibm

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-33813

21 Apr 2026 04:31Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.5

EPSS0.01393

XML external entity SAX builder denial of service Java library