All versions of Apache Santuario - XML Security for Java before 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an malicious user to abuse an XPath Transform to extract any local .xml files in a RetrievalMethod element.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache santuario xml security for java |
||
apache tomee |
||
apache cxf 3.4.4 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |
||
oracle flexcube private banking 12.1.0 |
||
oracle agile plm 9.3.6 |
||
oracle weblogic server 12.2.1.4.0 |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle outside in technology 8.5.5 |
||
oracle weblogic server 14.1.1.0.0 |
||
oracle retail merchandising system 16.0.3 |
||
oracle retail service backbone 16.0.3 |
||
oracle retail financial integration 16.0.3 |
||
oracle retail integration bus 16.0.3 |
||
oracle commerce guided search 11.3.2 |
||
oracle peoplesoft enterprise peopletools 8.59 |
||
oracle retail service backbone 15.0.3.1 |
||
oracle retail service backbone 14.1.3.2 |
||
oracle communications messaging server 8.1 |
||
oracle retail merchandising system 19.0.1 |
||
oracle retail integration bus 14.1.3.2 |
||
oracle retail financial integration 14.1.3.2 |
||
oracle retail integration bus 15.0.3.1 |
||
oracle retail financial integration 15.0.3.1 |
||
oracle commerce platform 11.3.2 |
||
oracle retail service backbone 19.0.1 |
||
oracle retail integration bus 19.0.1 |
||
oracle retail financial integration 19.0.1 |
||
oracle communications diameter intelligence hub |
||
oracle retail bulk data integration 16.0.3 |