dom4j 代码问题漏洞

来源:MISC

链接：https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html

来源:MISC

链接：https://github.com/dom4j/dom4j/commits/version-2.0.3

来源:MLIST

链接：https://lists.apache.org/thread.html/r91c64cd51e68e97d524395474eaa25362d564572276b9917fcbf5c32@%3Cdev.velocity.apache.org%3E

来源:CONFIRM

链接：https://github.com/dom4j/dom4j/commit/a8228522a99a02146106672a34c104adbda5c658

来源:UBUNTU

链接：https://usn.ubuntu.com/4575-1/

来源:MLIST

链接：https://lists.apache.org/thread.html/r51f3f9801058e47153c0ad9bc6209d57a592fc0e7aefd787760911b8@%3Cdev.velocity.apache.org%3E

来源:MISC

链接：https://www.oracle.com/security-alerts/cpuoct2020.html

来源:SUSE

链接：http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00061.html

来源:MISC

链接：https://bugzilla.redhat.com/show_bug.cgi?id=1694235

来源:CONFIRM

链接：https://github.com/dom4j/dom4j/releases/tag/version-2.1.3

来源:CONFIRM

链接：https://security.netapp.com/advisory/ntap-20200518-0002/

来源:MISC

链接：https://github.com/dom4j/dom4j/issues/87

来源:MISC

链接：https://www.oracle.com/security-alerts/cpujul2020.html

来源:www.oracle.com

链接：https://www.oracle.com/security-alerts/cpujul2020.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.3513/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/160562/Red-Hat-Security-Advisory-2020-5568-01.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.2992/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/159544/Ubuntu-Security-Notice-USN-4575-1.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.4464/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.2087/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/159015/Red-Hat-Security-Advisory-2020-3585-01.html

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/159921/Red-Hat-Security-Advisory-2020-4960-01.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.2837/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/158916/Red-Hat-Security-Advisory-2020-3501-01.html

来源:www.nsfocus.net

链接：http://www.nsfocus.net/vulndb/47453

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.3894/

来源:www.oracle.com

链接：https://www.oracle.com/security-alerts/cpujan2021.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.1581/

来源:www.ibm.com

链接：https://www.ibm.com/blogs/psirt/security-bulletinibm-resilient-soar-is-using-components-with-known-vulnerabilities-dom4j-cve-2020-10683/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/158891/Red-Hat-Security-Advisory-2020-3463-01.html

来源:www.oracle.com

链接：https://www.oracle.com/security-alerts/cpuoct2020.html

来源:www.ibm.com

链接：https://www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-jquery-spring-dom4j-mongodb-linux-kernel-targetcli-fb-jackson-node-js-and-apache-commons-affect-ibm-spectrum-protect-plus/

来源:access.redhat.com

链接：https://access.redhat.com/security/cve/cve-2020-10683

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.2826/

来源:vigilance.fr

链接：https://vigilance.fr/vulnerability/Dom4J-external-XML-entity-injection-via-SaxReader-32161

来源:www.ibm.com

链接：https://www.ibm.com/blogs/psirt/security-bulletin-dom4j-as-used-by-ibm-qradar-siem-contains-multiple-vulnerabilities-cve-2018-1000632-cve-2020-10683/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.3742/

来源:nvd.nist.gov

链接：https://nvd.nist.gov/vuln/detail/CVE-2020-10683

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/159083/Red-Hat-Security-Advisory-2020-3642-01.html