Security Advisory

CVE-2019-17637

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-15 14:55:13

Last updated 2024-08-05 01:47:13

Assigner eclipse

State PUBLISHED

Description

In all versions of Eclipse Web Tools Platform through release 3.18 (2020-06), XML and DTD files referring to external entities could be exploited to send the contents of local files to a remote server when edited or validated, even when external entity resolution is disabled in the user preferences.

← Browse all CVEs View on cve.org ↗