CVE-2021-4311

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-4311
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4311.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-4311
Withdrawn
2024-05-15T05:31:56.702985Z
Published
2023-01-09T12:15:15Z
Modified
2023-11-29T09:05:38.385038Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability classified as problematic was found in Talend Open Studio for MDM. This vulnerability affects unknown code of the component XML Handler. The manipulation leads to xml external entity reference. The patch is identified as 31d442b9fb1d518128fd18f6e4d54e06c3d67793. It is recommended to apply a patch to fix this issue. VDB-217666 is the identifier assigned to this vulnerability.

References

Affected packages

Git / github.com/Talend/tmdm-server-se

Affected ranges

Type
GIT
Repo
https://github.com/Talend/tmdm-server-se
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

Other

EAP/CDP71_20200526
feature/DEVOPS-33/tabversioning_root
feature/SCM-239/maventupbuild_root

maintenance/5.*

maintenance/5.6_root

maintenance/6.*

maintenance/6.0_root

release/5.*

release/5.0.1
release/5.0.2
release/5.0.3
release/5.1.0
release/5.1.1
release/5.1.2
release/5.1.3
release/5.2.1
release/5.2.2
release/5.2.3
release/5.3.1
release/5.3.2
release/5.4.1
release/5.4.2
release/5.5.0
release/5.5.1
release/5.6.0
release/5.6.0EP
release/5.6.0M2
release/5.6.0M4
release/5.6.0RC1

release/6.*

release/6.0.0M1
release/6.0.0M2
release/6.0.0M3
release/6.0.0M4
release/6.0.0M4_bak
release/6.0.0M4_root
release/6.0.0M5
release/6.0.0M5_root
release/6.0.0RC1_root
release/6.0.0_root
release/6.0.1_root
release/6.1.0
release/6.1.0M0
release/6.1.0M0_root
release/6.1.0M1
release/6.1.0M1_root
release/6.1.0M2
release/6.1.0RC1
release/6.1.0_bak
release/6.1.0_root
release/6.1.1_root
release/6.2.0M1_root
release/6.2.0M2_root
release/6.2.0M3_root
release/6.2.0NOTUSE_root
release/6.2.0RC1_root
release/6.2.0_root

release/7.*

release/7.1.1M0_root
release/7.1.1M2_root
release/7.1.1M3_root
release/7.1.1M4_root
release/7.1.1_root
release/7.2.1M0_root
release/7.2.1M1_root
release/7.2.1M2_root
release/7.2.1M3_root
release/7.2.1M4_root
release/7.2.1M5_root
release/7.2.1M6_root
release/7.2.1_root
release/7.3.1M0_root
release/7.3.1M1_root
release/7.3.1M2_root
release/7.3.1M3_root
release/7.3.1M4_root
release/7.3.1M5_root
release/7.3.1Mx_root
release/7.4.1M0_root
release/7.4.1M1_root
release/7.4.1M2_root

snap/release/5.*

snap/release/5.6.0M3/20140806_1529

snap/release/6.*

snap/release/6.0.0/20150626_1533
snap/release/6.0.0M4/20150408_1742
snap/release/6.0.0M5/20150507_2137
snap/release/6.0.0RC1/20150603_1838
snap/release/6.0.1/20150827_1701
snap/release/6.1.0/20151022_1558
snap/release/6.1.0/20151022_1901
snap/release/6.1.0/20151023_0617
snap/release/6.1.0/20151023_1548
snap/release/6.1.0/20151023_1558
snap/release/6.1.0/20151023_1830
snap/release/6.1.0/20151026_1633
snap/release/6.1.0/20151026_1910
snap/release/6.1.0/20151028_1506
snap/release/6.1.0/20151028_1726
snap/release/6.1.0/20151029_1337
snap/release/6.1.0/20151029_1637
snap/release/6.1.0M0/20150723_1530
snap/release/6.1.0M1/20150812_1515
snap/release/6.2.0/20160504_1603

snap/release/7.*

snap/release/7.1.1M4/20180926_1057