XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published: 2015-05-29T15:00:00
Updated: 2024-08-06T04:54:16.299Z
Reserved: 2015-02-17T00:00:00
Link: CVE-2015-1833

No data.

Status : Modified
Published: 2015-05-29T15:59:13.063
Modified: 2024-11-21T02:26:14.207
Link: CVE-2015-1833
