Checkstyle Security Vulnerabilities

cve

CVE-2019-10782

All versions of com.puppycrawl.tools:checkstyle before 8.29 are vulnerable to XML External Entity (XXE) Injection due to an incomplete fix for CVE-2019-9658.

5.3CVSS

5.3AI Score

0.009EPSS

2020-01-30 11:15 PM

107

cve

CVE-2019-9658

Checkstyle before 8.18 loads external DTDs by default.

5.3CVSS

5AI Score

0.009EPSS

2019-03-11 05:29 AM