Mchange CVE - OpenCVE

Filtered by vendor Mchange Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-20433	2 Debian, Mchange	2 Debian Linux, C3p0	2019-05-29	7.5 HIGH	9.8 CRITICAL
c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization.

Vulnerabilities (CVE)