Vulnerabilities > Nablarch Project

DATE CVE VULNERABILITY TITLE RISK
2019-03-12 CVE-2019-5919 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Nablarch Project Nablarch 5/5U1/5U13
An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.
network
low complexity
nablarch-project CWE-327
critical
9.1
2019-03-12 CVE-2019-5918 XXE vulnerability in Nablarch Project Nablarch 5/5U1/5U13
Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML External Entity (XXE) attacks via unspecified vectors.
network
low complexity
nablarch-project CWE-611
critical
9.1