Vulnerabilities > Redhat > Xerces

DATE CVE VULNERABILITY TITLE RISK
2020-09-17 CVE-2020-14338 Improper Input Validation vulnerability in Redhat Xerces 2.11.0/2.12.0
A flaw was found in Wildfly's implementation of Xerces, specifically in the way the XMLSchemaValidator class in the JAXP component of Wildfly enforced the "use-grammar-pool-only" feature.
network
low complexity
redhat CWE-20
5.3