Lucene search
Veracode Vulnerability DatabaseVERACODE:5852HistoryFeb 27, 2018 - 1:50 a.m.
XML External Entity (XXE) Injection
2018-02-2701:50:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.007 Low
EPSS
Percentile
80.1%
mxgraph is vulnerable to XML external entity (XXE) injection attacks. These attacks are possible because the SAXParserFactory used doesn’t prevent doc-type declarations (DTD), allowing attackers to perform these attacks.
Related
debiancve
debiancve
CVE-2017-18197
2018-02-24 02:29:01
osv
osv
CVE-2017-18197
2018-02-24 02:29:01
libjgraphx-java - security update
2018-03-04 00:00:00
mxGraph vulnerable to XXE attacks
2022-05-14 03:38:59
fedora
fedora
[SECURITY] Fedora 26 Update: jgraphx-3.6.0.0-3.fc26
2018-04-21 03:03:10
[SECURITY] Fedora 27 Update: jgraphx-3.6.0.0-4.fc27
2018-04-21 03:41:10
openvas
openvas
Fedora Update for jgraphx FEDORA-2018-b3f8bee2e0
2018-04-21 00:00:00
Fedora Update for jgraphx FEDORA-2018-b268b5bbb5
2018-04-21 00:00:00
Debian: Security Advisory (DLA-1299-1)
2018-03-26 00:00:00
nessus
nessus
Debian DLA-1299-1 : libjgraphx-java security update
2018-03-05 00:00:00
openSUSE Security Update : jgraphx (openSUSE-2018-228)
2018-03-07 00:00:00
Fedora 27 : jgraphx (2018-b268b5bbb5)
2018-04-23 00:00:00
redhatcve
redhatcve
CVE-2017-18197
2018-03-01 04:48:44
cve
cve
CVE-2017-18197
2018-02-24 02:29:01
github
github
mxGraph vulnerable to XXE attacks
2022-05-14 03:38:59
ubuntucve
ubuntucve
CVE-2017-18197
2018-02-24 00:00:00
prion
prion
Xxe
2018-02-24 02:29:00
cvelist
cvelist
CVE-2017-18197
2018-02-24 02:00:00
nvd
nvd
CVE-2017-18197
2018-02-24 02:29:01
debian
debian
[SECURITY] [DLA 1299-1] libjgraphx-java security update
2018-03-04 22:38:34