Description

IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 2000784.

Remediation

References

CVE-2016-9707

Related Vulnerabilities

WordPress Plugin Recart-The New GhostMonitor Unspecified Vulnerability (1.5.0)

WordPress Plugin JobSearch WP Job Board Cross-Site Scripting (1.5.5)

WordPress Plugin Captcha Backdoor (4.4.4)

WordPress Plugin Poll, Survey, Form & Quiz Maker by OpinionStage Unspecified Vulnerability (15.0.0)

Oracle HTTP Server CVE-2019-2414 Vulnerability (CVE-2019-2414)

Severity

High

Classification

CVE-2016-9707 CWE-611 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Tags

Missing Update Known Vulnerabilities