Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:15 p.m.7 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS6.8AI score0.02034EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0528

Malware in sbrugna...

10CVSS9AI score0.02034EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5697

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01824EPSS
Exploits1References5
OSV
OSV
added 2022/05/14 1:42 a.m.19 views

GHSA-X3CR-X949-H5JV RDF4J vulnerable to zip slip

RDF4J prior to 2.5.0 allows Directory Traversal via ../ in an entry in a ZIP archive...

7.5CVSS7.4AI score0.01824EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/05/14 1:42 a.m.15 views

RDF4J vulnerable to zip slip

RDF4J prior to 2.5.0 allows Directory Traversal via ../ in an entry in a ZIP archive...

7.5CVSS5.1AI score0.01824EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2018/12/19 6:37 p.m.19 views

Directory Traversal

rdf4j-util is vulnerable to directory traversal. An attacker is able to overwrite arbitrary files using the characters ../ as an entry in a ZIP archive. The overwrite occurs during decompressing of the ZIP file...

7.5CVSS7.4AI score0.01824EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2018/12/19 11:29 a.m.11 views

CVE-2018-20227

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive...

7.5CVSS6.8AI score
Exploits0References2
NVD
NVD
added 2018/12/19 11:29 a.m.16 views

CVE-2018-20227

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive...

7.5CVSS7.5AI score0.01824EPSS
Exploits1References2
Prion
Prion
added 2018/12/19 11:29 a.m.17 views

Directory traversal

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive...

6.4CVSS7.5AI score0.01824EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2018/12/19 11:0 a.m.70 views

CVE-2018-20227

Summary of CVE-2018-20227 (RDF4J): RDF4J 2.4.2 is vulnerable to a directory traversal (zip slip) via a ../ path in an entry within a ZIP archive. The underlying issue is a path traversal flaw that could enable extraction of arbitrary files when decompressing ZIP entries. Affected version in publi...

7.5CVSS7.4AI score0.01824EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/12/19 11:0 a.m.16 views

CVE-2018-20227

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive...

7.5AI score0.01824EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2018/12/19 12:0 a.m.4 views

PT-2018-15295 · Eclipse · Rdf4J

Name of the Vulnerable Software and Affected Versions: RDF4J versions 2.4.2 through 2.4.2 RDF4J versions prior to 2.5.0 Description: The issue allows Directory Traversal via ../ in an entry in a ZIP archive. Recommendations: For RDF4J version 2.4.2, update to version 2.5.0 or later. For RDF4J...

7.5CVSS7.2AI score0.01824EPSS
Exploits1References8
vulnersOsv
vulnersOsv
added 2018/10/19 4:54 p.m.5 views

ai.agnos:reactive-sparql_2.12 (>=0.3.0 <=0.3.1), com.franz:agraph-java-client (>=2.0.0 <=2.2.1) +61 more potentially affected by CVE-2018-1000644 via org.eclipse.rdf4j:rdf4j-runtime (>=1.0 <=2.4.0-M3)

org.eclipse.rdf4j:rdf4j-runtime MAVEN version =1.0, =0.3.0, =2.0.0, =8.0.0, =2.2.0, =1.2.0, =2.2.0, =4.6.0, =4.6.0, =4.3.0, =4.3.0, =4.3.0, =4.3.0, =4.5.0 and more Source cves: CVE-2018-1000644 Source advisory: OSV:GHSA-6XQ8-PVG4-3MF3...

10CVSS7.2AI score0.02034EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2018/10/19 4:54 p.m.33 views

Eclipse RDF4j vulnerable to XML External Entity

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS9AI score0.02034EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2018/10/19 4:54 p.m.24 views

GHSA-6XQ8-PVG4-3MF3 Eclipse RDF4j vulnerable to XML External Entity

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS9AI score0.02034EPSS
Exploits0References5
Veracode
Veracode
added 2018/08/21 7:53 a.m.16 views

XML External Entity (XXE)

rdf4j-rio-trix is vulnerable to XML external entities XXE attacks. The library does not disable entities and document type declarations, allowing a malicious user to conduct an XXE injection attack...

10CVSS9.4AI score0.02034EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2018/08/20 7:31 p.m.15 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS9.1AI score0.02034EPSS
Exploits0References2
OSV
OSV
added 2018/08/20 7:31 p.m.17 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS6.7AI score
Exploits0References2
Prion
Prion
added 2018/08/20 7:31 p.m.12 views

Xxe

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

7.5CVSS9.1AI score0.02034EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/08/20 7:0 p.m.85 views

CVE-2018-1000644

Known CVE-2018-1000644 affects Eclipse RDF4j

10CVSS9AI score0.02034EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder