CVE-2013-4152
Published at:
-
23-01-2014 10:55
Last modified:
-
11-04-2022 07:36
Total changes:
-
2
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
Low
Availability
Low
Confidentiality
Low
Integrity
-
Privileges required
-
Scope
-
User interaction
6.8
Base score
8.6
6.4
Exploitability score
Impact score
Verification logic
Reference
- 20130822 CVE-2013-4152 XML External Entity (XXE) injection in Spring Framework-
- http://www.gopivotal.com/security/cve-2013-4152
- https://github.com/spring-projects/spring-framework/pull/317/files
- DSA-2842-
- 20131102 XXE Injection in Spring Framework-
- https://jira.springsource.org/browse/SPR-10806
- 56247-
- RHSA-2014:0212-
- RHSA-2014:0254-
- RHSA-2014:0245-
- RHSA-2014:0400-
- 57915-
- 61951-
Keywords