7.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2019-1000007

GHSA ID

GHSA-6m9g-jr8c-cqw3

EPSS Score

0.57584%

CWE

CWE-237

Published

4/29/2020

Updated

9/4/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2019-1000007

CVE-2019-1000007: Depth counting error in guard() leading to multiple potential security issues in aioxmpp

Impact

Possible remote Denial of Service or Data Injection.

Patches

Patches are available in https://github.com/horazont/aioxmpp/pull/268. They have been backported to the 0.10 release series and 0.10.3 is the first release to contain the fix.

Workarounds

To make the bug exploitable, an error suppressing xso_error_handler is required. By not using xso_error_handlers or not using the suppression function, the vulnerability can be mitigated completely (to our knowledge).

References

The pull request contains a detailed description: https://github.com/horazont/aioxmpp/pull/268

For more information

If you have any questions or comments about this advisory:

Join our chat
Email the maintainer Jonas Schäfer

(GitHub Advisory)

7.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2019-1000007

GHSA ID

GHSA-6m9g-jr8c-cqw3

EPSS Score

0.57584%

CWE

CWE-237

Published

4/29/2020

Updated

9/4/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
aioxmpp	pip	< 0.10.3	0.10.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability is explicitly attributed to the guard() function in multiple sources: 1) The CVE title directly references guard() 2) The commit diff shows critical modifications to the guard() function's depth tracking logic 3) The advisory describes how improper depth counting in guard() leads to XML context confusion 4) The patch specifically restructures guard()'s error handling and depth management. The function's role in managing XML parser event routing makes it the clear vulnerability source when combined with error suppression mechanisms.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Imp**t Possi*l* r*mot* **ni*l o* S*rvi** or **t* Inj**tion. ### P*t***s P*t***s *r* *v*il**l* in *ttps://*it*u*.*om/*or*zont/*ioxmpp/pull/***. T**y **v* ***n ***kport** to t** *.** r*l**s* s*ri*s *n* *.**.* is t** *irst r*l**s* to *ont*in t** *i

Reasoning

T** vuln*r**ility is *xpli*itly *ttri*ut** to t** `*u*r*()` *un*tion in multipl* sour**s: *) T** *V* titl* *ir**tly r***r*n**s `*u*r*()` *) T** *ommit *i** s*ows *riti**l mo*i*i**tions to t** `*u*r*()` *un*tion's **pt* tr**kin* lo*i* *) T** **visory

7.4

Basic Information

Concerned about an active attack path?

CVE-2019-1000007: Depth counting error in guard() leading to multiple potential security issues in aioxmpp

Impact

Patches

Workarounds

References

For more information

7.4

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI