CVE-2019-0228 vulnerability in Apache and Other Products
Published on April 17, 2019

Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-0228

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-0228 are published in these products:

Apache Pdfbox

Apache James

Fedora Project Fedora

Oracle Banking Corporate Lending Process Management

Oracle Banking Credit Facilities Process Management

Oracle Banking Supply Chain Finance

Oracle Banking Trade Finance Process Management

Oracle Banking Virtual Account Management

Oracle Communications Messaging Server

Oracle Communications Session Report Manager

Oracle Hyperion Financial Reporting

Oracle Peoplesoft Enterprise Peopletools

Oracle Retail Xstore Point Of Service

Oracle Webcenter Sites

Exploit Probability

EPSS

13.21%

Percentile

93.99%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-0228 vulnerability in Apache and Other ProductsPublished on April 17, 2019

Products Associated with CVE-2019-0228

Exploit Probability

CVE-2019-0228 vulnerability in Apache and Other Products
Published on April 17, 2019