Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2020/12/16 12:11 p.m.179 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update

A minor version update from 7.7 to 7.8 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

9.8CVSS8AI score0.95586EPSS
Exploits12References39
RedhatCVE
RedhatCVE
added 2020/01/31 10:50 p.m.27 views

CVE-2019-3773

Spring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, were susceptible to XML External Entity Injection XXE when receiving XML data from untrusted sources...

9.8CVSS3.5AI score0.0411EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2019/01/25 4:18 p.m.5 views

com.makeandbuild:persistence (=1.0.47), com.makeandbuild:propconfig (=1.0.5) +5 more potentially affected by CVE-2019-3773 via org.springframework.ws:spring-ws (=2.1.0.RELEASE)

org.springframework.ws:spring-ws MAVEN version =2.1.0.RELEASE is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework.ws:spring-ws and may be impacted: - com.makeandbuild:persistence =1.0.47 - com.makeandbuild:propconfig =1.0.5 -...

9.8CVSS7.1AI score0.0411EPSS
Exploits0
OSV
OSV
added 2019/01/18 10:29 p.m.23 views

CVE-2019-3773

Spring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, were susceptible to XML External Entity Injection XXE when receiving XML data from untrusted sources...

9.8CVSS9.6AI score0.0411EPSS
Exploits0References5
CVE
CVE
added 2019/01/18 10:0 p.m.164 views

CVE-2019-3773

CVE-2019-3773 affects Spring Web Services (versions 2.4.3, 3.0.4, and other older, unsupported lines) and is due to XML External Entity (XXE) injection when processing XML from untrusted sources. The issue is rated high/critical (CVSSv3 9.8, network attack, unauthenticated, with high impact to co...

9.8CVSS9.6AI score0.0411EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/01/18 10:0 p.m.30 views

CVE-2019-3773 Spring Web Services XML External Entity Injection (XXE)

Spring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, were susceptible to XML External Entity Injection XXE when receiving XML data from untrusted sources...

9.7AI score0.0411EPSS
Exploits0References5
Rows per page
Query Builder