Xerces2 Java Security Vulnerabilities and Issues — Xerces2 Java CVE List

Lucene search

ApacheXerces2 Java

3 matches found

CVE•added 2013/07/23 11:3 a.m.•213 views

CVE-2013-4002

XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlie...

7.1CVSS6.7AI score0.01422EPSS

CVE•added 2009/08/06 3:30 p.m.•183 views

CVE-2009-2625

XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as ...

5CVSS6.1AI score0.00326EPSS

CVE•added 2017/10/30 4:29 p.m.•156 views

CVE-2012-0881

Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service (CPU consumption) via a crafted message to an XML service, which triggers hash table collisions.

7.8CVSS7AI score0.00691EPSS