Back to search
CVE-2016-9181
Published: Dec 22, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
perl-Image-Info: When parsing an SVG file, external entity expansion (XXE) was not disabled. An attacker could craft an SVG file which, when processed by an application using perl-Image-Info, could cause denial of service or, potentially, information disclosure.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20161104 Re: CVE request: XXE in perl Image:nfo and XML:wig
mailing-list
x_refsource_MLIST
94220
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now