Lucene search
GoogleOSV:GHSA-R8J4-96MX-RJCCHistoryJan 21, 2022 - 6:13 p.m.
Improper Restriction of XML External Entity Reference in skylot/jadx
2022-01-2118:13:42
Google
osv.dev
6
skylot/jadx
xml external entity
vulnerability
apk file
androidmanifest.xml
strings.xml
gradle
local file disclosure.
EPSS
0.001
Percentile
33.4%
skylot/jadx prior to 1.3.2 is vulnerable to Improper Restriction of XML External Entities when a user is tricked into exporting a malicious APK file (via the -e option) containing a crafted AndroidManifest.xml / strings.xml to gradle, leading to possible local file disclosure.
Related
prion
prion
Xxe
2022-01-20 17:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-0219
2022-01-20 17:15:18
huntr
huntr
in skylot/jadx
2022-01-12 15:22:08
github
github
Improper Restriction of XML External Entity Reference in skylot/jadx
2022-01-21 18:13:42
osv
osv
CVE-2022-0219
2022-01-20 17:15:18
veracode
veracode
XML External Entity (XXE)
2022-01-21 05:56:10
githubexploit
githubexploit
cve
cve
CVE-2022-0219
2022-01-20 17:15:18