CVE-2015-0263 in Camelinfo

Summary

XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

11/18/2014

Disclosure

06/03/2015

Moderation

VulDB entry created

Entries

VDB-75689 (1)

CPE

ready

CWE

CWE-611 (Confirmed)

CVSS

5.3

EPSS

0.02570

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-0263
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-0263
CVE Details	https://www.cvedetails.com/cve/CVE-2015-0263/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!