CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2019-10782
https://notcve.org/view.php?id=CVE-2019-10782
30 Jan 2020 — All versions of com.puppycrawl.tools:checkstyle before 8.29 are vulnerable to XML External Entity (XXE) Injection due to an incomplete fix for CVE-2019-9658. Todas las versiones de com.puppycrawl.tools:checkstyle anteriores a 8.29, son vulnerables a una inyección XML External Entity (XXE) debido a una corrección incompleta para el CVE-2019-9658. • https://lists.apache.org/thread.html/r8aaf4ee16bbaf6204731d4770d96ebb34b258cd79b491f9cdd7f2540%40%3Ccommits.nifi.apache.org%3E • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 5.3EPSS: 3%CPEs: 4EXPL: 0CVE-2019-9658
https://notcve.org/view.php?id=CVE-2019-9658
11 Mar 2019 — Checkstyle before 8.18 loads external DTDs by default. Checkstyle, en versiones anteriores a la 8.18, carga DTD externas por defecto. • https://checkstyle.org/releasenotes.html#Release_8.18 • CWE-611: Improper Restriction of XML External Entity Reference •