Lucene search
Veracode Vulnerability DatabaseVERACODE:27036HistorySep 21, 2020 - 6:32 a.m.
XML External Entity (XXE)
2020-09-2106:32:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
25
jabref
xml external entity
xxe
msbibimporter
data disclosure
denial of service
server side request forgery
port scanning
EPSS
0.002
Percentile
61.3%
JabRef version <=4.3.1 contains a XML External Entity (XXE) vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file.
Related
osv
osv
CVE-2018-1000652
2018-08-20 19:31:44
debiancve
debiancve
CVE-2018-1000652
2018-08-20 19:31:44
cvelist
cvelist
CVE-2018-1000652
2018-08-20 19:00:00
cve
cve
CVE-2018-1000652
2018-08-20 19:31:44
ubuntucve
ubuntucve
CVE-2018-1000652
2018-08-20 00:00:00
prion
prion
Xxe
2018-08-20 19:31:00
nvd
nvd
CVE-2018-1000652
2018-08-20 19:31:44