yEd
by yWorks
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-25216 | Cri | 0.64 | 9.8 | 0.02 | Sep 17, 2020 | yWorks yEd Desktop before 3.20.1 allows code execution via an XSL Transformation when using an XML file in conjunction with a custom stylesheet. | ||
| CVE-2020-25215 | Cri | 0.64 | 9.8 | 0.01 | Sep 17, 2020 | yWorks yEd Desktop before 3.20.1 allows XXE attacks via an XML or GraphML document. |
- risk 0.64cvss 9.8epss 0.02
yWorks yEd Desktop before 3.20.1 allows code execution via an XSL Transformation when using an XML file in conjunction with a custom stylesheet.
- risk 0.64cvss 9.8epss 0.01
yWorks yEd Desktop before 3.20.1 allows XXE attacks via an XML or GraphML document.