Preços Enterprise

CVE-2022-0839

9.8CRITICAL

Improper Restriction of XML External Entity Reference in GitHub repository liquibase/liquibase prior to 4.8.0.

Publicado: 3/4/2022Atualizado: 11/3/2025

Ver no NVD Ver no MITRE

Descrição

Improper Restriction of XML External Entity Reference in GitHub repository liquibase/liquibase prior to 4.8.0.

Análise IADesenvolvido por IA

Produtos Afetados

liquibaseliquibase

oraclesqlcl

19c

Referências

https://github.com/liquibase/liquibase/commit/33d9d925082097fb1a3d2fc8e44423d964cd9381
Patch
https://huntr.dev/bounties/f1ae5779-b406-4594-a8a3-d089c68d6e70
ExploitPatchThird Party Advisory
https://www.oracle.com/security-alerts/cpujul2022.html
PatchThird Party Advisory
http://seclists.org/fulldisclosure/2025/Apr/14
https://github.com/liquibase/liquibase/commit/33d9d925082097fb1a3d2fc8e44423d964cd9381
Patch
https://huntr.dev/bounties/f1ae5779-b406-4594-a8a3-d089c68d6e70
ExploitPatchThird Party Advisory
https://www.oracle.com/security-alerts/cpujul2022.html
PatchThird Party Advisory