XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:23
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2015-06-03 20:59
Updated : 2024-02-28 15:21
NVD link : CVE-2015-0263
Mitre link : CVE-2015-0263
CVE.ORG link : CVE-2015-0263
JSON object : View
Products Affected
apache
- camel
CWE