Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-15160

The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2019-15160
  • Kbrw » Sweet Xml » Version: N/A
    cpe:2.3:a:kbrw:sweet_xml:-
  • Kbrw » Sweet Xml » Version: 0.1.0
    cpe:2.3:a:kbrw:sweet_xml:0.1.0
  • Kbrw » Sweet Xml » Version: 0.1.1
    cpe:2.3:a:kbrw:sweet_xml:0.1.1
  • Kbrw » Sweet Xml » Version: 0.2.0
    cpe:2.3:a:kbrw:sweet_xml:0.2.0
  • Kbrw » Sweet Xml » Version: 0.2.1
    cpe:2.3:a:kbrw:sweet_xml:0.2.1
  • Kbrw » Sweet Xml » Version: 0.3.0
    cpe:2.3:a:kbrw:sweet_xml:0.3.0
  • Kbrw » Sweet Xml » Version: 0.4.0
    cpe:2.3:a:kbrw:sweet_xml:0.4.0
  • Kbrw » Sweet Xml » Version: 0.5.0
    cpe:2.3:a:kbrw:sweet_xml:0.5.0
  • Kbrw » Sweet Xml » Version: 0.5.1
    cpe:2.3:a:kbrw:sweet_xml:0.5.1
  • Kbrw » Sweet Xml » Version: 0.6.0
    cpe:2.3:a:kbrw:sweet_xml:0.6.0
  • Kbrw » Sweet Xml » Version: 0.6.1
    cpe:2.3:a:kbrw:sweet_xml:0.6.1
  • Kbrw » Sweet Xml » Version: 0.6.2
    cpe:2.3:a:kbrw:sweet_xml:0.6.2
  • Kbrw » Sweet Xml » Version: 0.6.3
    cpe:2.3:a:kbrw:sweet_xml:0.6.3
  • Kbrw » Sweet Xml » Version: 0.6.4
    cpe:2.3:a:kbrw:sweet_xml:0.6.4
  • Kbrw » Sweet Xml » Version: 0.6.5
    cpe:2.3:a:kbrw:sweet_xml:0.6.5
  • Kbrw » Sweet Xml » Version: 0.6.6
    cpe:2.3:a:kbrw:sweet_xml:0.6.6


Products
Pricing
Contact Us

Shodan ® - All rights reserved