Lucene search
Redhat.comRH:CVE-2016-8739HistoryDec 21, 2016 - 2:47 p.m.
CVE-2016-8739
2016-12-2114:47:35
redhat.com
access.redhat.com
14
0.006 Low
EPSS
Percentile
77.6%
Apache CXF JAX-RS implementation provides a number of Atom MessageBodyReaders. These readers use Apache Abdera Parser to parse Atom feeds or Entries, with this Parser expanding XML entities by default. It was found that this represents a major XXE risk.
Related
cve
cve
CVE-2016-8739
2017-08-10 18:29:00
cvelist
cvelist
CVE-2016-8739
2016-12-19 00:00:00
github
github
Improper Restriction of XML External Entity Reference in Apache CXF JAX-RS
2022-05-13 01:09:20
nvd
nvd
CVE-2016-8739
2017-08-10 18:29:00
osv
osv
Improper Restriction of XML External Entity Reference in Apache CXF JAX-RS
2022-05-13 01:09:20
CVE-2016-8739
2017-08-10 18:29:00
veracode
veracode
XML External Entity (XXE)
2016-12-23 04:04:51
prion
prion
Design/Logic Flaw
2017-08-10 18:29:00
nessus
nessus
Fedora 25 : 1:cxf (2016-2361e1e07a)
2017-01-03 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: cxf-3.1.6-3.fc25
2016-12-31 06:51:31
openvas
openvas
Fedora Update for cxf FEDORA-2016-2361e1e07a
2017-01-01 00:00:00
ibm
ibm
redhat
redhat