Miggo Logo

CVE-2015-0254:
XXE in Apache Standard Taglibs

7.5

CVSS Score

Basic Information

EPSS Score
0.92281%
Published
9/14/2020
Updated
2/1/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.apache.taglibs:taglibs-standardmaven< 1.2.31.2.3
org.apache.taglibs:taglibs-standard-implmaven< 1.2.31.2.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

*p**** St*n**r* T**li*s ***or* *.*.* *llows r*mot* *tt**k*rs to *x**ut* *r*itr*ry *o** or *on*u*t *xt*rn*l XML *ntity (XX*) *tt**ks vi* * *r**t** XSLT *xt*nsion in * (*) <x:p*rs*> or (*) <x:tr*ns*orm> JSTL XML t**.

Reasoning

No *n*lysis *v*il**l*