CVE-2014-0107

CWE-264 CWE-285 CWE-35810 documents9 sources

Severity

7.5HIGH

EPSS

8.8%

top 7.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Xalan-java Oracle Webcenter Sites

Timeline

PublishedApr 15

Latest updateMay 13

Description

The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or access external resources via a crafted (1) xalan:content-header, (2) xalan:entities, (3) xslt:content-header, or (4) xslt:entities property, or a Java property that is bound to the XSLT 1.0 system-property function.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages4 packages

▶NVDapache/xalan-java2.7.1+12

▶Debianlibxalan2-java< 2.7.1-9+3

▶Mavenxalan:xalan< 2.7.2

▶NVDoracle/webcenter_sites11.1.1.8.0, 7.6.2+1

Patches

Patch: svn.apache.org ↗Patch: www.oracle.com ↗Patch: svn.apache.org ↗

🔴Vulnerability Details

OSV

Improper Authorization in Apache Xalan-Java↗2022-05-13

▶

GHSA

Improper Authorization in Apache Xalan-Java↗2022-05-13

▶

CVEList

CVE-2014-0107: The TransformerFactory in Apache Xalan-Java before 2↗2014-04-15

▶

OSV

CVE-2014-0107: The TransformerFactory in Apache Xalan-Java before 2↗2014-04-15

▶

💥Exploits & PoCs

Exploit-DB

IBM Tivoli Service Automation Manager 7.2.4 - Remote Code Execution↗2014-12-12

▶

📋Vendor Advisories

Ubuntu

Xalan-Java vulnerability↗2014-05-21

▶

Red Hat

Xalan-Java: insufficient constraints in secure processing feature↗2014-03-24

▶

Debian

CVE-2014-0107: libxalan2-java - The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restr...↗2014

▶

💬Community

Bugzilla

CVE-2014-0107 Xalan-Java: insufficient constraints in secure processing feature↗2014-03-25

▶