CVE-2025-54988 | Apache Tika up to 3.2.1 XFA File xml external entity reference

Inserito da Angelo Barbosa | Ago 20, 2025 | CVE

A vulnerability labeled as problematic has been found in Apache Tika up to 3.2.1. The affected element is an unknown function of the component XFA File Handler. Such manipulation leads to xml external entity reference.

This vulnerability is documented as CVE-2025-54988. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2025-54988 | Apache Tika up to 3.2.1 XFA File xml external entity reference

Post correlati

CVE-2024-56545 | Linux Kernel up to 6.6.63/6.11.10/6.12.1 hyperv drivers/base/devres.c devres_open_group allocation of resources

CVE-2025-7768 | Tigo Energy Cloud Connect Advanced up to 4.0.1 hard-coded credentials (icsa-25-217-02)

CVE-2025-54296 | ProFiles Component up to 1.5.0 on Joomla cross site scripting

CVE-2024-42793 | Kashipara Music Management System 1.0 ajax.php cross-site request forgery