Lucene search
Redhat.comRH:CVE-2017-18197HistoryMar 01, 2018 - 4:48 a.m.
CVE-2017-18197
2018-03-0104:48:44
redhat.com
access.redhat.com
3
0.007 Low
EPSS
Percentile
80.1%
In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert() is missing flags to prevent XML External Entity (XXE) attacks, as demonstrated by /ServerView.
Related
debiancve
debiancve
CVE-2017-18197
2018-02-24 02:29:01
osv
osv
CVE-2017-18197
2018-02-24 02:29:01
libjgraphx-java - security update
2018-03-04 00:00:00
mxGraph vulnerable to XXE attacks
2022-05-14 03:38:59
fedora
fedora
[SECURITY] Fedora 26 Update: jgraphx-3.6.0.0-3.fc26
2018-04-21 03:03:10
[SECURITY] Fedora 27 Update: jgraphx-3.6.0.0-4.fc27
2018-04-21 03:41:10
openvas
openvas
Fedora Update for jgraphx FEDORA-2018-b3f8bee2e0
2018-04-21 00:00:00
Fedora Update for jgraphx FEDORA-2018-b268b5bbb5
2018-04-21 00:00:00
Debian: Security Advisory (DLA-1299-1)
2018-03-26 00:00:00
nessus
nessus
Debian DLA-1299-1 : libjgraphx-java security update
2018-03-05 00:00:00
openSUSE Security Update : jgraphx (openSUSE-2018-228)
2018-03-07 00:00:00
Fedora 26 : jgraphx (2018-b3f8bee2e0)
2018-04-23 00:00:00
veracode
veracode
XML External Entity (XXE) Injection
2018-02-27 01:50:34
ubuntucve
ubuntucve
CVE-2017-18197
2018-02-24 00:00:00
prion
prion
Xxe
2018-02-24 02:29:00
cvelist
cvelist
CVE-2017-18197
2018-02-24 02:00:00
nvd
nvd
CVE-2017-18197
2018-02-24 02:29:01
debian
debian
[SECURITY] [DLA 1299-1] libjgraphx-java security update
2018-03-04 22:38:34
cve
cve
CVE-2017-18197
2018-02-24 02:29:01
github
github
mxGraph vulnerable to XXE attacks
2022-05-14 03:38:59