Lucene search
Veracode Vulnerability DatabaseVERACODE:20987HistoryAug 05, 2019 - 6:33 a.m.
Denial Of Service (DoS)
2019-08-0506:33:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
EPSS
0.005
Percentile
77.0%
tika-parsers is vulnerable to denial of service (DoS). The vulnerability exists as the use of XMLReaderUtils.parseSAX, when parsing 2003 and 2006 documents, may cause DoS.
References
github.com/apache/tika/commit/81c21ab0aac6b3e4102a1a8906c8c7eab6f96dae
lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E
lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E
lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E
lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E
Related
github
github
Allocation of Resources Without Limits or Throttling in Apache Tika
2019-08-06 01:43:38
osv
osv
CVE-2019-10093
2019-08-02 19:15:11
Allocation of Resources Without Limits or Throttling in Apache Tika
2019-08-06 01:43:38
ubuntucve
ubuntucve
CVE-2019-10093
2019-08-02 00:00:00
openvas
openvas
Apache Tika Server 1.19 < 1.22 Denial of Service Vulnerability
2019-08-05 00:00:00
prion
prion
Code injection
2019-08-02 19:15:00
nvd
nvd
CVE-2019-10093
2019-08-02 19:15:11
cvelist
cvelist
CVE-2019-10093
2019-08-02 18:32:41
debiancve
debiancve
CVE-2019-10093
2019-08-02 19:15:11
cve
cve
CVE-2019-10093
2019-08-02 19:15:11
ibm
ibm
Security Bulletin: Apache Tika as used by IBM QRadar SIEM is vulnerable to denial of service (CVE-2019-10088, CVE-2019-10093, CVE-2019-10094)
2019-12-20 08:47:33
nessus
nessus
Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2020 CPU)
2020-01-30 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00
Oracle Critical Patch Update Advisory - April 2020
2020-04-14 00:00:00