Lucene search
K

44 matches found

CNNVD
CNNVD
added 2026/05/01 12:0 a.m.17 views

Apache Neethi 代码问题漏洞

Apache Neethi is a policy processing framework library developed by the Apache Foundation. Apache Neethi has code-related vulnerabilities; these vulnerabilities arise from the lack of restrictions on URIs when manually retrieving remote policy references via the PolicyReference API. This could le...

7.2CVSS5.9AI score0.00497EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

Apache Neethi 资源管理错误漏洞

Apache Neethi is a policy processing framework library developed by the Apache Foundation. There is a resource management vulnerability in Apache Neethi, which stems from the algorithmic complexity involved in policy normalization. This vulnerability may cause specially crafted WS-Policy document...

7.5CVSS5.7AI score0.00711EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.9 views

PT-2026-36310

Name of the Vulnerable Software and Affected Versions Apache Neethi versions prior to 3.2.2 Description Apache Neethi fails to properly detect circular references in policy definitions. When a WS-Policy document contains circular policy references for example, Policy A references Policy B, which ...

7.5CVSS5.9AI score0.00763EPSS
Exploits2References74
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.5 views

PT-2026-36309

Name of the Vulnerable Software and Affected Versions Apache Neethi versions prior to 3.2.2 Description An issue exists in policy normalization where algorithmic complexity allows for a Denial of Service attack. Specially crafted WS-Policy documents can trigger an exponential Cartesian...

9.1CVSS5.8AI score0.01125EPSS
Exploits6References74
Rows per page
Query Builder