Guest

Cisco Security

Effective 2019 Sep 15, Cisco will no longer publish non-Cisco product alerts. Cisco will continue to publish Security Advisories to address third-party software vulnerabilities per the Cisco Security Vulnerability Policy.

Multivendor Vulnerability Alert

Apache PDFBox XML Parser XML External Entity Vulnerability

Critical
Alert ID:
60042
First Published:
2019 April 22 22:03 GMT
Version: 
1
CVE-2019-0228
CWE-611
CVSS Score:
Base 9.8, Temporal 8.5Click Icon to Copy Verbose Score
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
CVE-2019-0228
CWE-611