VDB
CVE-2014-3530
CVE-2014-3530
PUBLISHED
CVSS 7.5 HIGH
XXE via insecure DocumentBuilderFactory usage
EPSS 2.13% · 84.5th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
2.13%
84.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Maven | org.picketlink:picketlink-fed-core | 0, 0, 0 |
| n/a | n/a | *, n/a, n/a |
| Maven | org.picketlink:picketlink-common | 0, 0, 0 |
Timeline
- Jul 22, 2014 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Nov 1, 2022 CVE Updated
- Dec 18, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
References
- RHSA-2014:0886 vendor-advisory
- RHSA-2014:0885 vendor-advisory
- RHSA-2015:0765 vendor-advisory
- 60124 third-party-advisory
- RHSA-2015:0675 vendor-advisory
- RHSA-2015:0720 vendor-advisory
- RHSA-2014:0884 vendor-advisory
- RHSA-2015:1888 vendor-advisory
- RHSA-2015:0091 vendor-advisory
- 60047 third-party-advisory
- RHSA-2014:0883 vendor-advisory
- 1030607 vdb
- jboss-cve20143530-info-disc(94700) vdb
- https://bugzilla.redhat.com/CVE-2014-3530 url