It was discovered that dom4j incorrectly handled reading XML data. A
remote attacker could exploit this with a crafted XML file to expose
sensitive data or possibly execute arbitrary code. (CVE-2020-10683)

References

ubuntu.com/security/CVE-2020-10683

ubuntu.com/security/notices/USN-4575-1

ibm 19

prion 1

osv 3

redhatcve 1

openvas 8

mageia 1

ubuntu 1

nvd 1

f5 1

veracode 1

nessus 20

debian 1

github 1

cvelist 1

cve 1

suse 1

ubuntucve 1

debiancve 1

redhat 13

hp 1

oracle 10

ibm

Security Bulletin: ITCAM for Transactions affect by the Security vulnerability CVE-2020-10683 found in dom4j-1.6.1.jar

2023-08-30 15:30:21

Security Bulletin: IBM Security Verify Information Queue uses a dom4j version with improper XXE restrictions (CVE-2020-10683)

2022-07-07 17:43:49

Security Bulletin:IBM Resilient SOAR is Using Components with Known Vulnerabilities - dom4j (CVE-2020-10683)

2020-08-31 21:38:10

prion

Xxe

2020-05-01 19:15:00

osv

CVE-2020-10683

2020-05-01 19:15:12

dom4j - security update

2020-04-29 00:00:00

dom4j allows External Entities by default which might enable XXE attacks

2020-06-05 16:13:36

redhatcve

CVE-2020-10683

2022-05-14 11:33:01

openvas

Ubuntu: Security Advisory (USN-4575-1)

2020-10-14 00:00:00

Huawei EulerOS: Security Advisory for dom4j (EulerOS-SA-2020-2102)

2020-09-29 00:00:00

Debian: Security Advisory (DLA-2191-1)

2020-05-01 00:00:00

mageia

Updated dom4j packages fix a security vulnerability

2021-01-17 19:07:01

ubuntu

dom4j vulnerability

2020-10-13 00:00:00

nvd

CVE-2020-10683

2020-05-01 19:15:12

K02349370 : dom4j library vulnerability CVE-2020-10683

2020-05-12 00:00:00

veracode

XML External Entity

2020-04-22 04:37:29

nessus

EulerOS 2.0 SP8 : dom4j (EulerOS-SA-2020-1799)

2020-07-30 00:00:00

EulerOS 2.0 SP5 : dom4j (EulerOS-SA-2020-1596)

2020-06-02 00:00:00

EulerOS 2.0 SP2 : dom4j (EulerOS-SA-2020-1677)

2020-06-17 00:00:00

debian

[SECURITY] [DLA 2191-1] dom4j security update

2020-04-30 22:00:18

github

dom4j allows External Entities by default which might enable XXE attacks

2020-06-05 16:13:36

cvelist

CVE-2020-10683

2020-05-01 18:55:25

cve

CVE-2020-10683

2020-05-01 19:15:12

suse

Security update for dom4j (important)

2020-05-26 00:00:00

ubuntucve

CVE-2020-10683

2020-05-01 00:00:00

debiancve

CVE-2020-10683

2020-05-01 19:15:12

redhat

(RHSA-2020:4961) Moderate: Red Hat Process Automation Manager 7.9.0 security update

2020-11-05 18:44:42

(RHSA-2020:4960) Moderate: Red Hat Decision Manager 7.9.0 security update

2020-11-05 18:43:06

(RHSA-2020:3461) Important: Red Hat JBoss Enterprise Application Platform 7.3.2 security update

2020-08-17 13:17:33

HP Device Manager Security Updates

2023-10-20 00:00:00

oracle

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Oracle Critical Patch Update Advisory - October 2022

2022-10-18 00:00:00

Oracle Critical Patch Update Advisory - January 2021

2021-01-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.9 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.8%

JSON

Related for OSV:USN-4575-1