Critical severityNVD Advisory· Published Mar 25, 2022· Updated Aug 4, 2024
CVE-2021-43090
CVE-2021-43090
Description
An XML External Entity (XXE) vulnerability exists in soa-model before 1.6.4 in the WSDLParser function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.predic8:soa-model-parentMaven | < 1.6.4 | 1.6.4 |
com.predic8:soa-model-coreMaven | < 1.6.4 | 1.6.4 |
Affected products
3- soa-model/soa-modeldescription
- ghsa-coords2 versions
< 1.6.4+ 1 more
- (no CPE)range: < 1.6.4
- (no CPE)range: < 1.6.4
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-pv39-qp28-4mghghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-43090ghsaADVISORY
- github.com/membrane/soa-model/commit/19de16902468e7963cc4dc6b544574bc1ea3f251ghsax_refsource_MISCWEB
- github.com/membrane/soa-model/commit/3aa295f155f621d5ea661cb9a0604013fc8fd8ffghsax_refsource_MISCWEB
- github.com/membrane/soa-model/issues/281ghsax_refsource_MISCWEB
- github.com/membrane/soa-model/releases/tag/v1.6.4ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.