Maven package
org.jboss.resteasy/resteasy-jaxb-provider
pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2011-5245 | — | < 2.3.2 | 2.3.2 | Nov 23, 2012 | The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows remote attackers to read arbitrary files via an external entity reference in a Java Architecture for XML Binding (JAXB) input, aka an XML external entity (XXE) injection attack, a similar |
- CVE-2011-5245Nov 23, 2012affected < 2.3.2fixed 2.3.2
The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows remote attackers to read arbitrary files via an external entity reference in a Java Architecture for XML Binding (JAXB) input, aka an XML external entity (XXE) injection attack, a similar