Advisory Database
  • Advisories
  • Dependency Scanning
  1. maven
  2. ›
  3. xerces/xercesImpl
  4. ›
  5. CVE-2012-1724

CVE-2012-1724: Excessive Iteration

June 16, 2012 (updated January 17, 2018)

Xerces allows remote attackers to affect availability.

References

  • svn.apache.org/viewvc?view=revision&revision=319059
  • bugzilla.redhat.com/CVE-2012-1724

Detect and mitigate CVE-2012-1724 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

All versions up to 2.3.0

Fixed versions

  • 2.4.0

Solution

Upgrade to version 2.4.0 or above.

Impact 5 MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P

Learn more about CVSS

Source file

maven/xerces/xercesImpl/CVE-2012-1724.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Thu, 21 Nov 2024 00:20:26 +0000.