Teiid prior to 8.4.3 and prior to 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote malicious users to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat jboss data virtualization |
||
jboss teiid |
||
jboss teiid 8.4 |