Security Advisory

CVE-2018-20433

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-24 13:00:00
Last updated 2024-08-05 11:58:19
Assigner mitre
State PUBLISHED

Description

c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization.

← Browse all CVEs View on cve.org ↗