CVE-2014-3629

Currently unrated

Key Information:

Vendor: Apache
Status: Qpid
Vendor: CVE Published:; 17 November 2014

Summary

XML external entity (XXE) vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/98575

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/533943/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/71004

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 17, 2014
Vulnerability Reserved
May 14, 2014