CVE-2014-0170 in JBoss Data Virtualization信息

摘要 (英语)

Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

预定

2013-12-03

披露

2014-09-30

状态

已确认

条目

VulDB provides additional information and datapoints for this CVE:

标识符漏洞CWE可利用对策CVE
71690Red Hat JBoss Data Virtualization 信息公开200未经证实官方修复CVE-2014-0170

描述

CPE

CWE

CVSS

漏洞利用

历史

差异

连接

威胁情报

API JSON

API XML

API CSV

来源

上一步一览下一步

Want to stay up to date on a daily basis?

Enable the mail alert feature now!