English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

XMLTooling Project XMLTooling 1.5.4

CPE Details

XMLTooling Project XMLTooling 1.5.4
xmltooling_project
xmltooling
1.5.4
2015-08-12 14:32 +00:00
2015-08-13 13:23 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:xmltooling_project:xmltooling:1.5.4:*:*:*:*:*:*:*

Informations

Vendor

xmltooling_project

Product

xmltooling

Version

1.5.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-9628 2019-04-11 17:26 +00:00 The XMLTooling library all versions prior to V3.0.4, provided with the OpenSAML and Shibboleth Service Provider software, contains an XML parsing class. Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
7.5
HIGH
CVE-2015-0851 2015-08-12 12:00 +00:00 XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.
5

More information
Click on the button to the left (OFF), to authorize the inscription of cookie improving the functionalities of the site. Click on the button to the left (Accept all), to unauthorize the inscription of cookie improving the functionalities of the site.