| Max CVSS | 5.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-4517 | 4.3 |
Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
|
18-04-2023 - 19:07 | 11-01-2014 - 01:55 | |
| CVE-2013-6440 | 5.0 |
The (1) BasicParserPool, (2) StaticBasicParserPool, (3) XML Decrypter, and (4) SAML Decrypter in Shibboleth OpenSAML-Java before 2.6.1 set the expandEntityReferences property to true, which allows remote attackers to conduct XML external entity (XXE)
|
07-02-2022 - 16:15 | 14-02-2014 - 15:55 | |
| CVE-2014-0018 | 1.9 |
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to
|
07-01-2017 - 02:59 | 14-02-2014 - 15:55 |