rpm package
suse/dom4j&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
pkg:rpm/suse/dom4j&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-1000632 | Hig | 7.5 | < 1.6.1-8.3.8.1 | 1.6.1-8.3.8.1 | Aug 20, 2018 | dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents through XML injection. This attack appear to be exploitable via an attacker specify |
- affected < 1.6.1-8.3.8.1fixed 1.6.1-8.3.8.1
dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents through XML injection. This attack appear to be exploitable via an attacker specify