← Back

Woodstox

woodstox

Vendor: Fasterxml • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-40152
2Fasterxml
Xstream
2Woodstox
Xstream
May 23, 2025
Sep 16, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parse...Show more
Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks (DOS) if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.Show less