VDB
H1-509315
H1-509315
PUBLISHED
CVSS 6.199999809265137 MEDIUM
c3p0 may be exploited by a Billion Laughs Attack when loading XML configuration
Risk Scores
CVSS 3.1
6.199999809265137
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
Exploit Intelligence
- version between CVE-2018-20433 and CVE-2019-5427 (github-poc-repo)
- version between CVE-2018-20433 and CVE-2019-5427 (github-poc)
- c3p0 may be exploited by a Billion Laughs Attack when loading XML configuration (hackerone)
- c3p0 may be exploited by a Billion Laughs Attack when loading XML configuration (hackerone)
Timeline
- Apr 16, 2019 CVE Published
- Apr 16, 2019 PoC Published