CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

Linux Distros Unpatched Vulnerability : CVE-2018-1000639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request...

LatexDrawXML External Entity Injection Vulnerability

LatexDraw is a vector image editor. An XML external entity injection vulnerability exists in the SVG parsing feature in LatexDraw 4.0 and earlier versions. The vulnerability can be exploited to disclose data, spoof server-side requests, scan ports, or cause a denial of service with the help of...

CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

Xxe

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

UBUNTU-CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

CVE-2018-1000639

The CVE-2018-1000639 entry concerns LatexDraw versions