Maven package
org.jbpm/jbpm-bpmn2
pkg:maven/org.jbpm/jbpm-bpmn2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-8125 | — | < 6.2.0.Final | 6.2.0.Final | Apr 21, 2015 | XML external entity (XXE) vulnerability in Drools and jBPM before 6.2.0 allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted BPMN2 file. |
- CVE-2014-8125Apr 21, 2015affected < 6.2.0.Finalfixed 6.2.0.Final
XML external entity (XXE) vulnerability in Drools and jBPM before 6.2.0 allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted BPMN2 file.