Vulnerabilities (CVE)

Filtered by vendor Castor Project Subscribe
Filtered by product Castor
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-3004 3 Castor Project, Opensuse, Opensuse Project 3 Castor, Opensuse, Opensuse 2024-11-21 4.3 MEDIUM N/A
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.