Skip to main content

Rdf4J

2 CVEs product

Monthly

CVE-2018-20227 Maven HIGH POC PATCH This Week

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Rdf4J
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2018-1000644 Maven CRITICAL PATCH Act Now

Eclipse RDF4j version < 2.4.0 Milestone 2 contains a XML External Entity (XXE) vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service XXE SSRF Rdf4J
NVD GitHub
CVSS 3.0
10.0
EPSS
2.0%
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

RDF4J 2.4.2 allows Directory Traversal via ../ in an entry in a ZIP archive. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Rdf4J
NVD GitHub
EPSS 2% CVSS 10.0
CRITICAL PATCH Act Now

Eclipse RDF4j version < 2.4.0 Milestone 2 contains a XML External Entity (XXE) vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service XXE SSRF +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy