XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2015-03-24T17:00:00
Updated: 2017-11-03T18:57:01
Reserved: 2014-11-18T00:00:00
Link: CVE-2015-0250
JSON object: View
NVD Information
Status : Modified
Published: 2015-03-24T17:59:00.070
Modified: 2017-11-04T01:29:01.910
Link: CVE-2015-0250
JSON object: View
Redhat Information
No data.
CWE