Lucene search
+L

6 matches found

susecve
susecve
added 2023/02/15 5:21 a.m.6 views

SUSE CVE-2015-1832

XML external entity XXE vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via vectors involving XmlVTI and the XML dataty...

9.1CVSS9.2AI score0.12173EPSS
Exploits0References4
github
github
added 2022/05/13 1:14 a.m.34 views

Improper Restriction of XML External Entity Reference in Apace Derby

XML external entity XXE vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via vectors involving XmlVTI and the XML dataty...

9.1CVSS8.6AI score0.12173EPSS
Exploits0References14Affected Software1
ubuntucve
ubuntucve
added 2016/10/03 9:59 p.m.39 views

CVE-2015-1832

XML external entity XXE vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via vectors involving XmlVTI and the XML dataty...

9.1CVSS7.3AI score0.12173EPSS
Exploits0References4
osv
osv
added 2016/10/03 9:59 p.m.3 views

UBUNTU-CVE-2015-1832

XML external entity XXE vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via vectors involving XmlVTI and the XML dataty...

9.1CVSS7.4AI score0.12173EPSS
Exploits0References5
cvelist
cvelist
added 2016/10/03 9:0 p.m.25 views

CVE-2015-1832

XML external entity XXE vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via vectors involving XmlVTI and the XML dataty...

8.9AI score0.12173EPSS
Exploits0References13
cve
cve
added 2016/10/03 9:0 p.m.168 views

CVE-2015-1832

CVE-2015-1832 is an XXE vulnerability in the XmlVTI/XML datatype handling of Derby’s SqlXmlUtil, present in Apache Derby before 10.12.1.1 and exploitable when a Java Security Manager is not in place. Context-dependent attackers could read arbitrary files or cause resource exhaustion (DOS) via Xml...

9.1CVSS8.8AI score0.12173EPSS
Exploits0References13Affected Software1
Rows per page
Query Builder