Description

Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.

Remediation

References

http://markmail.org/message/cwr552iapmhukb45

http://www.securityfocus.com/bid/99576

Related Vulnerabilities

CVE-2022-38370 Vulnerability in maven package org.apache.iotdb:iotdb-grafana-connector

CVE-2022-41966 Vulnerability in maven package com.thoughtworks.xstream:xstream

CVE-2020-15092 Vulnerability in npm package @knight-lab/timelinejs

CVE-2014-3600 Vulnerability in maven package org.apache.activemq:activemq-client

CVE-2022-24431 Vulnerability in npm package abacus-ext-cmdline

Severity

Critical

Classification

CWE-611 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H

Tags

Mailing List Third Party Advisory VDB Entry