XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2015-05-29T15:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2015-02-17T00:00:00
Link: CVE-2015-1833
JSON object: View
NVD Information
Status : Modified
Published: 2015-05-29T15:59:13.063
Modified: 2018-10-09T19:56:00.077
Link: CVE-2015-1833
JSON object: View
Redhat Information
No data.
CWE