9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2016-15011

GHSA ID

GHSA-77cc-w3wm-6whp

EPSS Score

0.26569%

CWE

CWE-611

Published

1/6/2023

Updated

10/20/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2016-15011

CVE-2016-15011: dssp vulnerable to Improper Restriction of XML External Entity Reference

A vulnerability classified as problematic was found in e-Contract dssp up to 1.3.1. Affected by this vulnerability is the function checkSignResponse of the file dssp-client/src/main/java/be/e_contract/dssp/client/SignResponseVerifier.java. The manipulation leads to xml external entity reference. Upgrading to version 1.3.2 can address this issue. The name of the patch is ec4238349691ec66dd30b416ec6eaab02d722302. It is recommended to upgrade the affected component. The identifier VDB-217549 was assigned to this vulnerability.

(GitHub Advisory)

9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2016-15011

GHSA ID

GHSA-77cc-w3wm-6whp

EPSS Score

0.26569%

CWE

CWE-611

Published

1/6/2023

Updated

10/20/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
be.e_contract.dssp:dssp-client	maven	< 1.3.2	1.3.2

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from insecure XML parsing in checkSignResponse. The pre-patch code:

Used JAXB unmarshalling directly on raw input (new ByteArrayInputStream)
Later created a DocumentBuilder without disabling DTDs
The patch explicitly adds 'disallow-doctype-decl' feature to DocumentBuilderFactory and changes parsing order to use the secured DOM document for JAXB unmarshalling instead of raw input. The CVE description explicitly names checkSignResponse as the affected function, and the commit diff shows insecure XML handling patterns were present in this method prior to the fix.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility *l*ssi*i** *s pro*l*m*ti* w*s *oun* in *-*ontr**t *ssp up to *.*.*. *****t** *y t*is vuln*r**ility is t** *un*tion `****kSi*nR*spons*` o* t** *il* `*ssp-*li*nt/sr*/m*in/j*v*/**/*_*ontr**t/*ssp/*li*nt/Si*nR*spons*V*ri*i*r.j*v*`. T** m*

Reasoning

T** vuln*r**ility st*ms *rom ins**ur* XML p*rsin* in ****kSi*nR*spons*. T** pr*-p*t** *o**: *. Us** J*X* unm*rs**llin* *ir**tly on r*w input (n*w *yt**rr*yInputStr**m) *. L*t*r *r**t** * *o*um*nt*uil**r wit*out *is**lin* *T*s *. T** p*t** *xpli*itly

9.8

Basic Information

Concerned about an active attack path?

CVE-2016-15011: dssp vulnerable to Improper Restriction of XML External Entity Reference

9.8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI