You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
[CVE-2012-0881] Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service (CPU consumption) via a crafted message to an XML service, which triggers hash table collisions.
[CVE-2013-4002] CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')
[CVE-2022-23437] CWE-91: XML Injection (aka Blind XPath Injection)
[sonatype-2017-0348] CWE-833: Deadlock
[CVE-2009-2625] CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')
The text was updated successfully, but these errors were encountered:
Sonatype Lift reports:
[CVE-2012-0881] Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to cause a denial of service (CPU consumption) via a crafted message to an XML service, which triggers hash table collisions.
[CVE-2013-4002] CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')
[CVE-2022-23437] CWE-91: XML Injection (aka Blind XPath Injection)
[sonatype-2017-0348] CWE-833: Deadlock
[CVE-2009-2625] CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')
The text was updated successfully, but these errors were encountered: