2 matches found
VulnCheck KEV: CVE-2018-1335
From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to untrusted...
Apache denial of service vulnerability
Apache Commons Compress is an American Apache Apache Software Foundation library for processing compressed files. A denial of service vulnerability exists in Apache Commons Compress versions 1.7 through 1.17, which stems from a failure of the read method of ZipArchiveInputStream to return the...