VDB

GCVE-VVD-MAGEIA-2021-34

GCVE-VVD-MAGEIA-2021-34
Advisory Published
Vulnetix · Advisory published March 4, 2021
A flaw was found in the dom4j library. By using the default SaxReader() provided by Dom4J, external DTDs and External Entities are allowed, resulting in a possible XXE (CVE-2020-10683).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiadom4j0 (affected), 2.0.0-4.1.mga7 (unaffected), 0 (affected), 2.0.0-4.1.mga7 (unaffected)
Mageiagmic0 (affected), 2.9.4-3.1.mga8 (unaffected)

Aliases

CVE-2020-10683

Transitive aliases

VVD-GENTOO-2020-720728VVD-GENTOO-2020-719318GHSA-hwj3-m3p6-hj38EUVD-2020-0492CNVD-2020-33467BDU:2020-04038

References

Updated dom4j packages fix a security vulnerability
advisory
Updated dom4j packages fix a security vulnerability
issue
Updated dom4j packages fix a security vulnerability
advisory
Updated gmic packages restaure functionalities
advisory
Updated gmic packages restaure functionalities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›