Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.5 views

Atlassian Confluence 7.13 < 9.2.11 / 9.3.1 < 10.1.0 (CONFSERVER-101827)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-101827 advisory. - Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit 2.23.2 due to usage of an unsecured document build t...

8.8CVSS7.4AI score0.00466EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/14 7:27 p.m.3 views

CVE-2025-53689

An XML external entity flaw was found in Apache Jackrabbit. This issue occurs when using an unsecured document builder to load privileges and is vulnerable to an attack where a malicious user can inject harmful code. Mitigation Mitigation for this issue is either not available or the currently...

8.8CVSS6.1AI score0.00466EPSS
Exploits0References6
NVD
NVD
added 2025/07/14 10:15 a.m.10 views

CVE-2025-53689

Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit 2.23.2 due to usage of an unsecured document build to load privileges. Users are recommended to upgrade to versions 2.20.17 Java 8, 2.22.1 Java 11 or 2.23.2 Java 11, beta versions, which fix this issue...

8.8CVSS0.00466EPSS
Exploits0References2
CVE
CVE
added 2025/07/14 9:15 a.m.46 views

CVE-2025-53689

CVE-2025-53689 covers blind XXE in Apache Jackrabbit’s jackrabbit-spi-commons and jackrabbit-core prior to 2.23.2, due to an unsecured document build that loads privileges. Public references in the initial and connected documents indicate this affects Confluence Server/Data Center (via bundled Ja...

8.8CVSS6.5AI score0.00466EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/14 9:15 a.m.4 views

CVE-2025-53689 Apache Jackrabbit: XXE vulnerability in jackrabbit-spi-commons

Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit 2.23.2 due to usage of an unsecured document build to load privileges. Users are recommended to upgrade to versions 2.20.17 Java 8, 2.22.1 Java 11 or 2.23.2 Java 11, beta versions, which fix this issue...

7AI score0.00466EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/14 9:15 a.m.8 views

CVE-2025-53689 Apache Jackrabbit: XXE vulnerability in jackrabbit-spi-commons

Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit 2.23.2 due to usage of an unsecured document build to load privileges. Users are recommended to upgrade to versions 2.20.17 Java 8, 2.22.1 Java 11 or 2.23.2 Java 11, beta versions, which fix this issue...

0.00466EPSS
Exploits0References1
Circl
Circl
added 2025/07/14 7:14 a.m.18 views

CVE-2025-53689

creationtimestamp| type| source ---|---|--- 2025-07-14 07:14:29+00:00| seen| https://seclists.org/oss-sec/2025/q3/39 2025-07-14 09:26:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ltw32lq4ff2c...

8.8CVSS7.6AI score0.00466EPSS
Exploits0References2
Rows per page
Query Builder