Lucene search

K

PRIOn knowledge basePRION:CVE-2014-0003

HistoryMar 21, 2014 - 4:38 a.m.

Design/Logic Flaw

2014-03-2104:38:00

PRIOn knowledge base

www.prio-n.com

8

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.61 Medium

EPSS

Percentile

97.7%

The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message.

CPENameOperatorVersion
cameleq1.1.0
cameleq2.0.0
cameleq1.4.0
cameleq2.10.6
camelle2.11.3
cameleq1.2.0
cameleq1.6.2
cameleq2.10.0
cameleq2.11.0
cameleq2.10.7

Rows per page:

1-10 of 311

References

camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc

rhn.redhat.com/errata/RHSA-2014-0245.html

rhn.redhat.com/errata/RHSA-2014-0254.html

rhn.redhat.com/errata/RHSA-2014-0371.html

rhn.redhat.com/errata/RHSA-2014-0372.html

secunia.com/advisories/57125

secunia.com/advisories/57716

secunia.com/advisories/57719

www.securityfocus.com/bid/65902

lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E

lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.61 Medium

EPSS

Percentile

97.7%

Related for PRION:CVE-2014-0003

checkpoint_advisories1 seebug1 github1 osv1 ubuntucve1 cve1 redhat7 nessus2