CVE-2017-8315
HIGH7.5EPSS 0.66%發布日:2018/4/20修改日:2026/4/28
也稱為:DEBIAN-CVE-2017-8315
描述
Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on Androidmanifest.xml.
受影響套件(1)
- Debian/apktoolfrom 0, < 2.2.4-1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |