Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2011-3287
HistoryOct 06, 2011 - 10:00 a.m.

CVE-2011-3287

2011-10-0610:00:00
cisco
www.cve.org
8
cisco
jabber xcp
denial of service

AI Score

7.1

Confidence

High

EPSS

0.004

Percentile

72.8%

JSON

Cisco Jabber Extensible Communications Platform (aka Jabber XCP) 2.x through 5.4.x before 5.4.0.27581 and 5.8.x before 5.8.1.27561 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption, and process crash) via a crafted XML document containing a large number of nested entity references, aka Bug ID CSCtq78106, a similar issue to CVE-2003-1564.

Related

prion 28
cve 29
nvd 29
cvelist 28
ubuntucve 13
freebsd 1
debiancve 11
nessus 20
openvas 22
github 2
osv 3
veracode 1
centos 1
redhatcve 1
redhat 1
securityvulns 3
cisco 1
prion
prion
Code injection
2011-10-06 10:55:00
Code injection
2011-06-21 02:52:00
Code injection
2011-06-22 21:55:00
cve
cve
CVE-2011-3287
2011-10-06 10:55:05
CVE-2003-1564
2008-09-02 14:00:00
CVE-2009-2473
2009-08-21 17:30:00
nvd
nvd
CVE-2011-3287
2011-10-06 10:55:05
CVE-2003-1564
2003-12-31 05:00:00
CVE-2015-9541
2020-01-24 22:15:12
cvelist
cvelist
CVE-2003-1564
2008-09-02 14:00:00
CVE-2011-1755
2011-06-21 01:00:00
CVE-2014-3090
2014-09-23 20:00:00
ubuntucve
ubuntucve
CVE-2003-1564
2003-12-31 00:00:00
CVE-2011-2205
2011-06-22 00:00:00
CVE-2014-5265
2014-08-18 00:00:00
freebsd
freebsd
ejabberd -- remote denial of service vulnerability
2011-04-27 00:00:00
debiancve
debiancve
CVE-2011-2205
2011-06-22 21:55:01
CVE-2015-9541
2020-01-24 22:15:12
CVE-2011-1753
2011-06-21 02:52:42
nessus
nessus
EulerOS 2.0 SP8 : qt (EulerOS-SA-2020-1299)
2020-03-23 00:00:00
openSUSE 15 Security Update : snakeyaml (openSUSE-SU-2021:1876-1)
2021-07-16 00:00:00
EulerOS 2.0 SP2 : qt (EulerOS-SA-2020-1669)
2020-06-17 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2020-1323)
2020-03-24 00:00:00
FreeBSD Ports: ejabberd
2011-08-03 00:00:00
Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2020-1431)
2020-04-16 00:00:00
github
github
SnakeYAML Entity Expansion during load operation
2021-06-04 21:37:45
JBossWS vulnerable to uncontrolled recursion
2022-05-13 01:39:29
osv
osv
CVE-2017-18640
2019-12-12 03:15:10
JBossWS vulnerable to uncontrolled recursion
2022-05-13 01:39:29
SnakeYAML Entity Expansion during load operation
2021-06-04 21:37:45
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:53:01
centos
centos
libxml2 security update
2008-09-12 01:23:56
redhatcve
redhatcve
CVE-2017-18640
2020-04-08 21:02:33
redhat
redhat
(RHSA-2008:0886) Important: libxml2 security update
2008-09-11 00:00:00
securityvulns
securityvulns
Cisco Jabber Extensible Communications Platform / Cisco Unified Presence
2011-10-02 00:00:00
Cisco Security Advisory: Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability
2011-10-02 00:00:00
[ MDVSA-2009:221 ] libneon0.27
2009-08-25 00:00:00
cisco
cisco
Jabber Extensible Communications Platform and Cisco Unified Presence XML Denial of Service Vulnerability
2011-09-28 16:00:00

AI Score

7.1

Confidence

High

EPSS

0.004

Percentile

72.8%

JSON
Related for CVELIST:CVE-2011-3287
prion28cve29nvd29cvelist28ubuntucve13freebsd1debiancve11nessus20openvas22github2osv3veracode1centos1redhatcve1redhat1securityvulns3cisco1