Playframework - Play Framework CVE

Filtered by vendor Playframework Subscribe

Filtered by product Play Framework

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-3630	2 Lightbend, Playframework	2 Play Framework, Play Framework	2019-11-25	7.5 HIGH	9.8 CRITICAL
XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data.

Vulnerabilities (CVE)