CVE-2017-1289

Summary

IBM SDK, Java Technology Edition is vulnerable XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources. IBM X-Force ID: 125150.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationRuntimes for Java Technology6.0, 6.1, 7.0, 7.1, 8.0affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References