Maven package
com.puppycrawl.tools/checkstyle
pkg:maven/com.puppycrawl.tools/checkstyle
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-10782 | — | < 8.29 | 8.29 | Jan 30, 2020 | All versions of com.puppycrawl.tools:checkstyle before 8.29 are vulnerable to XML External Entity (XXE) Injection due to an incomplete fix for CVE-2019-9658. | ||
| CVE-2019-9658 | — | < 8.18 | 8.18 | Mar 11, 2019 | Checkstyle before 8.18 loads external DTDs by default. |
- CVE-2019-10782Jan 30, 2020affected < 8.29fixed 8.29
All versions of com.puppycrawl.tools:checkstyle before 8.29 are vulnerable to XML External Entity (XXE) Injection due to an incomplete fix for CVE-2019-9658.
- CVE-2019-9658Mar 11, 2019affected < 8.18fixed 8.18
Checkstyle before 8.18 loads external DTDs by default.