Lucene search
K

40 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2021-0144)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS8.2AI score0.0665EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.3 views

Vulnerability of XML format conversion software in xmlgraphics-commons, due to insufficient validation of input data, allows attackers to access confidential information and compromise its integrity.

The vulnerability of XML format conversion software in xmlgraphics-commons is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to confidential data and compromise its integrity...

8.2CVSS6.8AI score0.0665EPSS
Exploits0References9Affected Software4
RedHat Linux
RedHat Linux
added 2021/12/14 9:31 p.m.4 views

xmlgraphics-commons: SSRF due to improper input validation by the XMPParser

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS7.3AI score0.0665EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/14 9:31 p.m.101 views

Critical: Red Hat Security Advisory: Red Hat Fuse 7.10.0 release and security update

A minor version update from 7.9 to 7.10 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring...

10CVSS7.1AI score0.99999EPSS
Exploits388References58
RedHat Linux
RedHat Linux
added 2021/06/17 1:15 p.m.102 views

Moderate: Red Hat Security Advisory: Red Hat Decision Manager 7.11.0 security update

An update is now available for Red Hat Decision Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

9.9CVSS7.2AI score0.82392EPSS
Exploits17References16
RedHat Linux
RedHat Linux
added 2021/06/17 1:14 p.m.2 views

xmlgraphics-commons: SSRF due to improper input validation by the XMPParser

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS7.3AI score0.0665EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/04/19 12:0 a.m.36 views

Fedora 33 : xmlgraphics-commons (2021-c07a9e79cf)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-c07a9e79cf advisory. - Apache XmlGraphics Commons 2.4 is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a...

8.2CVSS7.4AI score0.0665EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/02 12:0 a.m.27 views

Fedora: Security Advisory for xmlgraphics-commons (FEDORA-2021-c07a9e79cf)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS8.2AI score0.0665EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/02 12:0 a.m.23 views

Fedora: Security Advisory for xmlgraphics-commons (FEDORA-2021-c07a9e79cf)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS8.2AI score0.0665EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/28 12:0 a.m.21 views

Fedora: Security Advisory for xmlgraphics-commons (FEDORA-2021-aa2936e810)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS8.2AI score0.0665EPSS
Exploits0References2
OSV
OSV
added 2021/03/18 9:56 a.m.10 views

MGASA-2021-0144 Updated xmlgraphics-commons packages fix a security vulnerability

The Apache XML Graphics Commons library is vulnerable to SSRF via the XMPParser that allow an attacker to cause the underlying server to make arbitrary GET requests CVE-2020-11988...

8.2CVSS8.1AI score0.0665EPSS
Exploits0References4
CNVD
CNVD
added 2021/02/26 12:0 a.m.6 views

Apache XmlGraphics Commons Server-Side Request Forgery Vulnerability

Apache XmlGraphics Commons is Apach open source a system library . Provides several reusable libraries. Apache XmlGraphics Commons 2.4 suffers from a server-side request forgery vulnerability that stems from the failure of XMPParser to properly validate inputs, which can be exploited by an attack...

8.2CVSS6.7AI score0.0665EPSS
Exploits0References1
OSV
OSV
added 2021/02/24 6:15 p.m.9 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS8.1AI score
Exploits0References8
NVD
NVD
added 2021/02/24 6:15 p.m.22 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS0.0665EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2021/02/24 6:15 p.m.36 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS6.9AI score0.0665EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/02/24 5:5 p.m.26 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8AI score0.0665EPSS
Exploits0References8
CVE
CVE
added 2021/02/24 5:5 p.m.325 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier are vulnerable to server-side request forgery (SSRF) via the XMPParser due to improper input validation. An attacker could trigger the server to make arbitrary GET requests. Remediation is to upgrade to 2.6 or later. Connected documents (IBM, Astra Linux...

8.2CVSS7.8AI score0.0665EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2021/02/24 5:5 p.m.25 views

CVE-2020-11988

Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users...

8.2CVSS4.5AI score0.0665EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/02/24 12:0 a.m.3 views

PT-2021-5808 · Apache +3 · Apache Xmlgraphics Commons +3

Name of the Vulnerable Software and Affected Versions: Apache XmlGraphics Commons versions 2.4 and earlier Description: The issue is related to server-side request forgery caused by improper input validation by the XMPParser. An attacker could exploit this by using a specially-crafted argument to...

8.2CVSS6.9AI score0.0665EPSS
Exploits0References47
Tenable Nessus
Tenable Nessus
added 2017/05/10 12:0 a.m.47 views

Fedora 25 : batik (2017-43b46cd2da)

Security fix for CVE-2017-5662 ---- Add missing requires on xmlgraphics-commons Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

7.9CVSS7.4AI score0.04118EPSS
Exploits0References2
Rows per page
Query Builder