2 matches found
CVE-2022-23437
Technical specifics for CVE-2022-23437 (Xerces-J infinite loop in XML parsing) are not disclosed in the provided connected documents. Monitor for vendor/maintainer updates; current entries reference the issue but do not provide detailed root-cause, affected versions beyond 2.12.1, or fixes.
CVE-2018-2799
CVE-2018-2799 is an OpenJDK/Oracle Java SE vulnerability affecting the JAXP component. Affected are Java SE: 7u171, 8u162, 10; Java SE Embedded: 8u161; JRockit: R28.3.17. The issue permits an unauthenticated attacker with network access to trigger a partial denial of service. The vulnerability is...