Security Advisory

CVE-2017-7464

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-07-27 12:00:00

Last updated 2024-08-05 16:04:11

Assigner redhat

State PUBLISHED

Description

It was found that the JAXP implementation used in JBoss EAP 7.0 for SAX and DOM parsing is vulnerable to certain XXE flaws. An attacker could use this flaw to cause DoS, SSRF, or information disclosure if they are able to provide XML content for parsing.

← Browse all CVEs View on cve.org ↗