Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.10 views

CVE-2022-27193

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS6.6AI score0.00663EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-1470

Malicious code in bioql PyPI...

6.1CVSS5.6AI score0.00663EPSS
Exploits0References3
OSV
OSV
added 2022/03/16 12:0 a.m.43 views

GHSA-M8GQ-83GH-V42V XML External Entities Vulnerability in CVRF-CSAF-Converter

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS5.7AI score0.00663EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.30 views

XML External Entities Vulnerability in CVRF-CSAF-Converter

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS2.6AI score0.00663EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/03/15 5:15 a.m.22 views

CVE-2022-27193

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

6.1CVSS0.00663EPSS
Exploits0References1
OSV
OSV
added 2022/03/15 5:15 a.m.13 views

CVE-2022-27193

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

5.5CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2022/03/15 5:15 a.m.14 views

Xxe

CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities XXE. This leads to the inclusion of arbitrary local file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter...

4.3CVSS5.4AI score0.00663EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/03/15 4:15 a.m.109 views

CVE-2022-27193

The CVRF-CSAF-Converter (Python tool) is vulnerable to XML External Entities (XXE) in versions before 1.0.0-rc2, allowing an attacker to disclose arbitrary local files from the system running the converter. The issue arises from XXE handling in the input processing. Remediation: upgrade to 1.0.0-...

6.1CVSS5.3AI score0.00663EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/03/15 12:0 a.m.7 views

PT-2022-18280

Name of the Vulnerable Software and Affected Versions CVRF-CSAF-Converter versions prior to 1.0.0-rc2 Description The issue allows for the inclusion of arbitrary local file content into the generated output document due to XML External Entities XXE. This can be exploited by an attacker to disclos...

6.1CVSS6.2AI score0.00663EPSS
Exploits0References8
Rows per page
Query Builder