CVE-2017-1289

Metadata

CVE-2017-1289
6.4
securityfocus.com, access.redhat.com, access.redhat.com, access.redhat.com, access.redhat.com, ibm.com
2017-05-22
2018-01-05 07:08

Description

IBM SDK, Java Technology Edition is vulnerable XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 125150.

Related Vulnerabilities

platform vulnerability
CVE-2017-1289