Castor Project - Castor CVE

Filtered by vendor Castor Project Subscribe

Filtered by product Castor

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-3004	3 Castor Project, Opensuse, Opensuse Project	3 Castor, Opensuse, Opensuse	2023-12-10	4.3 MEDIUM	N/A
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.

Vulnerabilities (CVE)