Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Infinite loop within Apache XercesJ xml parser
Vulnerability Description
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulnerability is present within XercesJ version 2.12.1 and the previous versions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Xerces 安全漏洞
Vulnerability Description
Xerces是一个由Apache组织所推动的一项XML文档解析开源项目。 Apache Xerces Java (XercesJ) 2.12.1 和以前的版本中的 XML 解析器存在安全漏洞,攻击者可通过特制的 XML 文档负载导致 XercesJ XML 解析器在无限循环中等待,进而长时间消耗系统资源。
CVSS Information
N/A
Vulnerability Type
N/A