A vulnerability in XML processing in Apache Jena, in versions up to 4.1.0, may allow an attacker to execute XML External Entities (XXE), including exposing the contents of local files to a remote server.
References
Configurations
History
07 Nov 2023, 03:37
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2021-09-16 15:15
Updated : 2024-02-28 18:48
NVD link : CVE-2021-39239
Mitre link : CVE-2021-39239
CVE.ORG link : CVE-2021-39239
JSON object : View
Products Affected
apache
- jena
CWE
CWE-611
Improper Restriction of XML External Entity Reference