NVD

Id
47213  
Name
CVE-2012-6532  
Description
(1) Zend_Dom, (2) Zend_Feed, (3) Zend_Soap, and (4) Zend_XmlRpc in Zend Framework 1.x before 1.11.13 and 1.12.x before 1.12.0 allow remote attackers to cause a denial of service (CPU consumption) via recursive or circular references in an XML entity definition in an XML DOCTYPE declaration, aka an XML Entity Expansion (XEE) attack.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2013-02-13  
Modified Date
2013-05-03  
Seq
2012-6532  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
236189 47213 CVE-2012-6532 http://framework.zend.com/security/advisory/ZF2012-02  View
236190 47213 CVE-2012-6532 MDVSA-2013:115  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20000 JVNDB-2013-001575 Zend Framework におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 Zend Framework の (1) Zend_Dom、(2) Zend_Feed、(3) Zend_Soap、および (4) Zend_XmlRpc には、サービス運用妨害 (CPU 資源の消費) 状態となる脆弱性が存在します。 CVE-2012-6532 59770 CVE-2012-6532 47213 5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001575.html 2013-02-13 2013-02-18 View