Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: fop (UTSA-2025-675885)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-675885 advisory. Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are...

7.5CVSS6.4AI score0.01003EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/29 10:15 p.m.5 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Apache XML Graphics FOP (CVE-2024-28168)

Summary A vulnerability in Apache XML Graphics FOP that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2024-28168 DESCRIPTION: Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apac...

7.5CVSS6.6AI score0.01003EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-28168

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are...

7.5CVSS6.7AI score0.01003EPSS
Exploits0References3
Amazon
Amazon
added 2024/11/15 12:0 a.m.12 views

Medium: fop

Issue Overview: Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue. CVE-2024-28168 Affected Packages: fop Note: This advisory...

7.5CVSS7.7AI score0.01003EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/10/09 2:0 p.m.14 views

CVE-2024-28168

A flaw was found in Apache XML Graphics FOP. This vulnerability allows remote attackers to cause issues via improper handling of XML External Entity XXE references. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

7.5CVSS7.3AI score0.01003EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/10/09 12:30 p.m.12 views

Apache XML Graphics FOP XML External Entity Reference ('XXE') vulnerability

Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue...

7.5CVSS6.8AI score0.01003EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2024/10/09 12:15 p.m.23 views

CVE-2024-28168

Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue...

7.5CVSS0.01003EPSS
Exploits0References2
OSV
OSV
added 2024/10/09 12:15 p.m.13 views

CVE-2024-28168

Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue...

7.5CVSS7.5AI score
Exploits0References2
Cvelist
Cvelist
added 2024/10/09 12:4 p.m.28 views

CVE-2024-28168 Apache XML Graphics FOP: XML External Entity (XXE) Processing

Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue...

0.01003EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/09 12:4 p.m.17 views

CVE-2024-28168 Apache XML Graphics FOP: XML External Entity (XXE) Processing

Improper Restriction of XML External Entity Reference 'XXE' vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. Users are recommended to upgrade to version 2.10, which fixes the issue...

6.9AI score0.01003EPSS
Exploits0References1
CVE
CVE
added 2024/10/09 12:4 p.m.97 views

CVE-2024-28168

CVE-2024-28168 concerns an XXE in Apache XML Graphics FOP affecting version 2.9. The root cause is an improper restriction of XML External Entity references, leading to potential exposure of sensitive data if exploited over the network. The CVSS base score is 7.5 (Network attacker, no user intera...

7.5CVSS7.4AI score0.01003EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/10/09 12:0 a.m.6 views

Apache XML Graphics FOP 代码问题漏洞

Apache XML Graphics FOP is a Java application for converting XSL-FO files to PDF or other printable formats from the Apache Foundation USA. A code issue vulnerability exists in Apache XML Graphics FOP version 2.9, which stems from the presence of an incorrectly restricted XML external entity...

7.5CVSS6.6AI score0.01003EPSS
Exploits0References7
Rows per page
Query Builder