CVE-2024-51135 | powertac-server 1.9.0 DocumentBuilderFactory xml external entity reference

Inserito da Angelo Barbosa | Nov 11, 2024 | CVE

A vulnerability has been found in powertac-server 1.9.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component DocumentBuilderFactory. The manipulation leads to xml external entity reference.

This vulnerability is known as CVE-2024-51135. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-51135 | powertac-server 1.9.0 DocumentBuilderFactory xml external entity reference

Post correlati

CVE-2024-33868 | linqi up to 1.4.0.0 on Windows ldap injection

CVE-2024-46954 | Artifex Ghostscript up to 10.03.x base/gp_utf8.c decode_utf8 path traversal

CVE-2024-44097 | Google Android Server Certificate Parser certificate validation

CVE-2024-24830 | OpenObserve up to 0.7.x Role-Based Access Control /api/{org_id}/users improper authorization (GHSA-hfxx-g56f-8h5v)