Lucene search
GoogleOSV:CVE-2020-12642HistoryMay 04, 2020 - 4:15 p.m.
CVE-2020-12642
2020-05-0416:15:12
Google
osv.dev
6
An issue was discovered in service-api before 4.3.12 and 5.x before 5.1.1 for Report Portal. It allows XXE, with resultant secrets disclosure and SSRF, via JUnit XML launch import.
| CPE | Name | Operator | Version |
|---|---|---|---|
| service-api | eq | 5.1.0-RC-3 | |
| service-api | eq | 5.1.0-RC | |
| service-api | eq | 5.1.0-RC-2 | |
| service-api | eq | 5.0.0 | |
| service-api | eq | 5.1.0 |
Related
cve
cve
CVE-2020-12642
2020-05-04 16:15:12
osv
osv
XML External Entity Reference
2021-08-13 15:21:59
XXE vulnerability in Launch import
2021-06-28 16:45:47
cvelist
cvelist
CVE-2020-12642
2020-05-04 15:14:14
prion
prion
Server side request forgery (ssrf)
2020-05-04 16:15:00
nvd
nvd
CVE-2020-12642
2020-05-04 16:15:12
github
github
XXE vulnerability in Launch import
2021-06-28 16:45:47