Lucene search

K

MitreCVELIST:CVE-2012-2928

HistoryMay 22, 2012 - 3:00 p.m.

CVE-2012-2928

2012-05-2215:00:00

mitre

www.cve.org

8

AI Score

9.1

Confidence

High

EPSS

0.017

Percentile

87.7%

The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to read arbitrary files or cause a denial of service (resource consumption) via unspecified vectors.

References

confluence.atlassian.com/display/DOC/Confluence+Security+Advisory+2012-05-17

confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2012-05-17

osvdb.org/81993

secunia.com/advisories/49166

www.securityfocus.com/bid/53595

exchange.xforce.ibmcloud.com/vulnerabilities/75697

AI Score

9.1

Confidence

High

EPSS

0.017

Percentile

87.7%

Related for CVELIST:CVE-2012-2928

nvd1 prion1 cve1 nessus1