Vulnerabilities > CVE-2014-0170

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

redhat

jboss

NVD

Published: 2014-09-30

Updated: 2024-11-21

Summary

Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Jboss Data Virtualization 5.0.0 Redhat Jboss Data Virtualization 6.0.0	4
Application	Jboss Jboss Teiid * Jboss Teiid 8.4	2

Redhat

advisories

rhsa

id	RHSA-2014:1284

References

http://rhn.redhat.com/errata/RHSA-2014-1284.html
http://rhn.redhat.com/errata/RHSA-2014-1284.html
http://secunia.com/advisories/61530
http://secunia.com/advisories/61530
http://www.securitytracker.com/id/1030886
http://www.securitytracker.com/id/1030886
https://exchange.xforce.ibmcloud.com/vulnerabilities/96192
https://exchange.xforce.ibmcloud.com/vulnerabilities/96192
https://issues.jboss.org/browse/TEIID-2911
https://issues.jboss.org/browse/TEIID-2911

Vulnerabilities > CVE-2014-0170 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2014-0170"}]}

Summary

Vulnerable Configurations

Redhat

References

Vulnerabilities > CVE-2014-0170