Apache PDFBox 2.0.14 does not ... CVE-2019-0228

7.5 AV AC AU C I A
发布: 2019-04-17
修订: 2019-05-25

Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息