Description

HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy

Remediation

References

https://access.redhat.com/security/cve/cve-2014-3599

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3599

Related Vulnerabilities

CVE-2022-48285 Vulnerability in maven package org.webjars.npm:github-com-stuk-jszip

CVE-2023-26487 Vulnerability in npm package vega

CVE-2017-16030 Vulnerability in maven package org.webjars.npm:useragent

CVE-2016-10707 Vulnerability in maven package org.webjars.bower:jquery

CVE-2023-33202 Vulnerability in maven package org.bouncycastle:bc-fips

Severity

High

Classification

CWE-611 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Tags

Third Party Advisory Issue Tracking Patch