6 matches found
GHSA-FGQ9-FC3Q-VQMW Withdrawn Advisory: dom4j XML Entity Expansion vulnerability
Withdrawn Advisory This advisory has been withdrawn because the underlying vulnerability could not be reproduced. This link is maintained to preserve external references. Original Description An issue in dom4.j org.dom4.io.SAXReader v.2.1.4 and before allows a remote attacker to obtain sensitive...
Withdrawn Advisory: dom4j XML Entity Expansion vulnerability
Withdrawn Advisory This advisory has been withdrawn because the underlying vulnerability could not be reproduced. This link is maintained to preserve external references. Original Description An issue in dom4.j org.dom4.io.SAXReader v.2.1.4 and before allows a remote attacker to obtain sensitive...
dom4j Security Vulnerabilities
dom4j is an open source framework for processing XML. A security vulnerability exists in dom4j v.2.1.4 and earlier versions that could allow a remote attacker to obtain sensitive information via the setFeature function...
CVE-2023-45960
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2023-45960
CVE-2023-45960 refers to a dom4j SAXReader vulnerability where improper handling of XML external entity (XXE) declarations in the setFeature function could allow a remote attacker to obtain sensitive information. Documented by IBM for InfoSphere Information Server 11.7 as affected, with remediati...
CVE-2023-45960
Removed by vendor...