Lucene search
Redhat.comRH:CVE-2016-4434HistoryMay 27, 2016 - 9:18 a.m.
CVE-2016-4434
2016-05-2709:18:24
redhat.com
access.redhat.com
14
0.003 Low
EPSS
Percentile
71.2%
It was found that the parsing of OOXML, XMP in PDF, and some other file formats by Apache Tika would expand entity references. A remote, unauthenticated attacker could use this flaw to read files accessible to the user running the application server, and potentially perform other more advanced XXE attacks.
Related
f5
f5
SOL57108702 - Apache Tika XML External Entity vulnerability CVE-2016-4434
2016-06-14 00:00:00
K57108702 : Apache Tika XML External Entity vulnerability CVE-2016-4434
2016-06-14 00:00:00
openvas
openvas
Apache Tika Server XXE Vulnerability
2018-06-20 00:00:00
cve
cve
CVE-2016-4434
2017-09-30 01:29:00
fedora
fedora
[SECURITY] Fedora 28 Update: tika-1.17-1.fc28
2018-04-27 23:09:00
osv
osv
Apache Tika does not properly initialize the XML parser or choose handlers
2018-10-17 15:44:22
CVE-2016-4434
2017-09-30 01:29:00
nvd
nvd
CVE-2016-4434
2017-09-30 01:29:00
github
github
Apache Tika does not properly initialize the XML parser or choose handlers
2018-10-17 15:44:22
ubuntucve
ubuntucve
CVE-2016-4434
2017-09-30 00:00:00
nessus
nessus
Fedora 28 : tika (2018-639385f5ec)
2019-01-03 00:00:00
debiancve
debiancve
CVE-2016-4434
2017-09-30 01:29:00
prion
prion
Xxe
2017-09-30 01:29:00
cvelist
cvelist
CVE-2016-4434
2017-09-29 20:00:00
redhat
redhat
(RHSA-2017:0248) Moderate: Red Hat JBoss BRMS security update
2017-02-02 20:26:59
(RHSA-2017:0272) Moderate: Red Hat JBoss Data Virtualization security and bug fix update
2017-02-14 16:41:17
(RHSA-2017:0249) Moderate: Red Hat JBoss BPM Suite security update
2017-02-02 20:27:13
ibm
ibm