Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization before 6.0.0 patch 4, allows remote attackers to read arbitrary files via a crafted request to a REST endpoint.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat JBoss Data Virtualization Odata4j XML外部实体漏洞
Vulnerability Description
Red Hat JBoss Data Virtualization是美国红帽(Red Hat)公司的一套数据虚拟化系统,它支持应用程序使用来自多个异构数据存储设备中的数据。Odata4j是一个为客户端(client-side)和服务端(server-side)实现了OData(开放数据协议,用于查询和更新数据的一种Web协议)的Java框架。 Red Hat JBoss Data Virtualization 6.0.0及之前版本中使用的Odata4j中的StaxXMLFactoryProvider2存在
CVSS Information
N/A
Vulnerability Type
N/A