Medium severity5.9NVD Advisory· Published Apr 7, 2017· Updated May 13, 2026
CVE-2016-6805
CVE-2016-6805
Description
Apache Ignite before 1.9 allows man-in-the-middle attackers to read arbitrary files via XXE in modified update-notifier documents.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.ignite:ignite-coreMaven | < 1.9 | 1.9 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- seclists.org/oss-sec/2017/q2/31nvdMailing ListThird Party AdvisoryWEB
- www.securityfocus.com/bid/97509nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-8qfc-cvjp-mgpqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-6805ghsaADVISORY
News mentions
0No linked articles in our index yet.