CVE-2015-0263

Published: Jun 3, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2015:1539

vendor-advisory

x_refsource_REDHAT

RHSA-2015:1041

vendor-advisory

x_refsource_REDHAT

https://git-wip-us.apache.org/repos/asf?p=camel.git%3Ba=commitdiff%3Bh=7d19340bcdb42f7aae584d9c5003ac4f7ddaee36

x_refsource_CONFIRM

RHSA-2015:1538

vendor-advisory

x_refsource_REDHAT

1032442

vdb-entry

x_refsource_SECTRACK

https://camel.apache.org/security-advisories.data/CVE-2015-0263.txt.asc

x_refsource_CONFIRM

[camel-commits] 20190430 svn commit: r1044347 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0194.txt.asc security-advisories.html

mailing-list

x_refsource_MLIST

[camel-commits] 20190524 svn commit: r1045395 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0188.txt.asc security-advisories.html

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-0263

Description

Affected Products

References