Description

Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services (LCDS) 3.0.x before 3.0.0.354170, 4.5 before 4.5.1.354169, 4.6.2 before 4.6.2.354169, and 4.7 before 4.7.0.354169 and other products, allows remote attackers to read arbitrary files via an AMF message containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Remediation

References

https://helpx.adobe.com/security/products/livecycleds/apsb15-20.html

http://marc.info/?l=bugtraq&m=145706712500978&w=2

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05026202

http://www.securityfocus.com/bid/76394

http://www.vmware.com/security/advisories/VMSA-2015-0008.html

https://helpx.adobe.com/content/help/en/security/products/coldfusion/apsb15-21.html

http://www.securitytracker.com/id/1033337

http://www.securityfocus.com/archive/1/536266/100/0/threaded

https://www.zerodayinitiative.com/advisories/ZDI-22-508/

Related Vulnerabilities

CVE-2023-26480 Vulnerability in maven package org.xwiki.platform:xwiki-platform-livedata-webjar

CVE-2023-50730 Vulnerability in maven package org.typelevel:grackle-core_sjs1_3

CVE-2022-0436 Vulnerability in npm package grunt

CVE-2022-1330 Vulnerability in maven package org.webjars.bower:fullpage.js

CVE-2018-1000632 Vulnerability in maven package dom4j:dom4j

Severity

Critical

Classification

CWE-200

Tags

Patch Vendor Advisory Third Party Advisory