5 matches found
Security Bulletin: IBM InfoSphere Information Server is affected by dom4j vulnerability (CVE-2023-45960)
Summary A vulnerability in dom4j used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2023-45960 DESCRIPTION: dom4j could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity XXE declarations by the...
CVE-2023-45960
An issue was found in org.dom4j that may allow a remote attacker to obtain sensitive information via the setFeature function. This CVE is currently disputed by the maintainers...
CVE-2023-45960
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2023-45960
CVE-2023-45960 refers to a dom4j SAXReader vulnerability where improper handling of XML external entity (XXE) declarations in the setFeature function could allow a remote attacker to obtain sensitive information. Documented by IBM for InfoSphere Information Server 11.7 as affected, with remediati...
CVE-2023-45960
...