corenlp is vulnerable to Improper Restriction of XML External Entity Reference
References
Link | Resource |
---|---|
https://github.com/stanfordnlp/corenlp/commit/e5bbe135a02a74b952396751ed3015e8b8252e99 | Patch Third Party Advisory |
https://huntr.dev/bounties/a11c889b-ccff-4fea-9e29-963a23a63dd2 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-10-15T13:40:21
Updated: 2021-10-15T13:40:21
Reserved: 2021-10-12T00:00:00
Link: CVE-2021-3878
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-15T14:15:07.857
Modified: 2021-10-20T19:55:08.027
Link: CVE-2021-3878
JSON object: View
Redhat Information
No data.
CWE