Spring Batch versions 3.0.9, 4.0.1, 4.1.0, and older unsupported versions, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2019-01-15T00:00:00
Updated: 2020-06-29T07:06:03
Reserved: 2019-01-03T00:00:00
Link: CVE-2019-3774
JSON object: View
NVD Information
Status : Modified
Published: 2019-01-18T22:29:01.050
Modified: 2023-11-07T03:10:11.657
Link: CVE-2019-3774
JSON object: View
Redhat Information
No data.
CWE