Apache

Any23

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-34150

  • EPSS 0.07%
  • Published 05.07.2023 08:15:09
  • Last modified 21.11.2024 08:06:39

** UNSUPPORTED WHEN ASSIGNED ** Use of TikaEncodingDetector in Apache Any23 can cause excessive memory usage.

9.1

CVE-2022-25312

  • EPSS 1.97%
  • Published 05.03.2022 00:15:07
  • Last modified 21.11.2024 06:51:58

An XML external entity (XXE) injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions < 2.7. XML external entity injection (also known as XXE) is a web security vulnerability that allows ...

10

CVE-2021-40146

  • EPSS 4.3%
  • Published 11.09.2021 11:15:14
  • Last modified 21.11.2024 06:23:39

A Remote Code Execution (RCE) vulnerability was discovered in the Any23 YAMLExtractor.java file and is known to affect Any23 versions < 2.5. RCE vulnerabilities allow a malicious actor to execute any code of their choice on a remote machine over LAN,...

9.1

CVE-2021-38555

  • EPSS 1.27%
  • Published 11.09.2021 11:15:08
  • Last modified 21.11.2024 06:17:25

An XML external entity (XXE) injection vulnerability was discovered in the Any23 StreamUtils.java file and is known to affect Any23 versions < 2.5. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attac...