CVE-2018-1259HIGHCVSS 7.5v1.13 prior to 1.13.12; 2.0 prior to 2.0.72018-05-11
CVE-2018-1259 [HIGH] CWE-611 CVE-2018-1259: Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with
Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1.4.14 or earlier versions, contains a property binder vulnerability caused by improper restriction of XML external entity references as underlying library XMLBeam does not restrict external reference expansion. An unauthenticated remote maliciou
cvelistv5nvd