CVE-2017-5644 is a vulnerability in Apache Poi
Published on March 24, 2017

Apache POI in versions prior to release 3.15 allows remote attackers to cause a denial of service (CPU consumption) via a specially crafted OOXML file, aka an XML Entity Expansion (XEE) attack.

NVD

Products Associated with CVE-2017-5644

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-5644 are published in Apache Poi:

Apache Poi

Affected Versions

Apache Software Foundation Apache POI Version before 3.15 is affected by CVE-2017-5644

Exploit Probability

EPSS

0.66%

Percentile

70.67%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-5644 is a vulnerability in Apache PoiPublished on March 24, 2017

Products Associated with CVE-2017-5644

Affected Versions

Exploit Probability

CVE-2017-5644 is a vulnerability in Apache Poi
Published on March 24, 2017