CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Herac: >> Tuxguitar >> 1.5.4 Security Vulnerabilities

CVE-2020-14940

An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.

CVSS Score

7.5

EPSS Score

0.004

Published

2020-06-23

Page 1

Vulnerabilities

Vulnerable Software

Herac: >> Tuxguitar >> 1.5.4 Security Vulnerabilities

Products

Pricing

Contact Us