CVE-2017-8315

Summary

Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on Androidmanifest.xml.

Affected Software

VendorProductVersion RangeStatus
Check Point Software Technologies Ltd.EclipseAll version lower or equal to 2017.2.5affected

Weaknesses

  • Local Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References