Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-8152HistoryJan 21, 2015 - 6:59 p.m.
CVE-2014-8152
2015-01-2118:59:04
Debian Security Bug Tracker
security-tracker.debian.org
14
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.1%
Apache Santuario XML Security for Java 2.0.x before 2.0.3 allows remote attackers to bypass the streaming XML signature protection mechanism via a crafted XML document.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libxml-security-java | < 2.1.7-3 | libxml-security-java_2.1.7-3_all.deb |
| Debian | 11 | all | libxml-security-java | < 2.0.10-2+deb11u1 | libxml-security-java_2.0.10-2+deb11u1_all.deb |
| Debian | 999 | all | libxml-security-java | < 2.1.8-1 | libxml-security-java_2.1.8-1_all.deb |
| Debian | 13 | all | libxml-security-java | < 2.1.8-1 | libxml-security-java_2.1.8-1_all.deb |
Related
cve
cve
CVE-2014-8152
2015-01-21 18:59:04
veracode
veracode
Bypass XML Signature Protection Mechanism
2016-12-08 05:23:44
prion
prion
Authentication flaw
2015-01-21 18:59:00
osv
osv
Improper Input Validation in Apache Santuario XML Security
2022-05-13 01:05:55
nvd
nvd
CVE-2014-8152
2015-01-21 18:59:04
ubuntucve
ubuntucve
CVE-2014-8152
2015-01-21 00:00:00
cvelist
cvelist
CVE-2014-8152
2015-01-21 18:00:00
github
github
Improper Input Validation in Apache Santuario XML Security
2022-05-13 01:05:55
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.1%
Related for DEBIANCVE:CVE-2014-8152