VYPR
Critical severity10.0OSV Advisory· Published Dec 20, 2018· Updated Jun 17, 2026

CVE-2018-1000825

CVE-2018-1000825

Description

FreeCol version <= nightly-2018-08-22 contains a XML External Entity (XXE) vulnerability in FreeColXMLReader parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via Freecol file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Freecol/FreecolOSV2 versions
    nightly-2018-01-11, nightly-2018-01-16, nightly-2018-02-01, …+ 1 more
    • (no CPE)range: nightly-2018-01-11, nightly-2018-01-16, nightly-2018-02-01, …
    • (no CPE)range: <=nightly-2018-08-22

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.