Published: 21/01/2015 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Apache Santuario XML Security for Java 2.0.x prior to 2.0.3 allows remote malicious users to bypass the streaming XML signature protection mechanism via a crafted XML document.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache santuario xml security for java 2.0.2
apache santuario xml security for java 2.0.1
apache santuario xml security for java 2.0.0

Apache Santuario XML Security for Java 20x before 203 allows remote attackers to bypass the streaming XML signature protection mechanism via a crafted XML document ...

CWE-254 http://www.securityfocus.com/bid/72115 http://www.securitytracker.com/id/1031556 http://seclists.org/oss-sec/2015/q1/181 http://santuario.apache.org/secadv.data/CVE-2014-8152.txt.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/99993 https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2014-8152

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-8152

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect