In version from 3.5.Beta1 to 3.5.3 of Eclipse Vert.x, the OpenAPI XML type validator creates XML parsers without taking appropriate defense against XML attacks. This mechanism is exclusively when the developer uses the Eclipse Vert.x OpenAPI XML type validator to validate a provided schema.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: eclipse

Published: 2018-10-10T20:00:00

Updated: 2024-08-05T08:38:06.199Z

Reserved: 2018-06-18T00:00:00

Link: CVE-2018-12544

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-10-10T20:29:00.710

Modified: 2024-11-21T03:45:24.490

Link: CVE-2018-12544

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-09-27T00:00:00Z

Links: CVE-2018-12544 - Bugzilla