GHSA-pwm3-776c-8q7q
Suggest an improvement- Source
- https://github.com/advisories/GHSA-pwm3-776c-8q7q
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-pwm3-776c-8q7q/GHSA-pwm3-776c-8q7q.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-pwm3-776c-8q7q
- Aliases
-
- CVE-2025-4641
- Published
- 2025-05-14T21:31:18Z
- Modified
- 2025-05-15T17:57:08.336039Z
- Severity
-
- 9.3 (Critical) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:H/SI:L/SA:H CVSS Calculator
- Summary
- BoniGarcia WebDriverManager Affected By Improper Restriction of XML External Entity Reference
- Details
-
Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager on Windows, MacOS, Linux (XML parsing components modules) allows Data Serialization External Entities Blowup. This vulnerability is associated with program files src/main/java/io/github/bonigarcia/wdm/WebDriverManager.java.
This issue affects webdrivermanager: from 1.0.0 before 6.1.0.
- Database specific
{ "nvd_published_at": "2025-05-14T19:15:53Z", "cwe_ids": [ "CWE-611" ], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2025-05-15T17:27:58Z" }- References
Affected packages
Maven / io.github.bonigarcia:webdrivermanager
Package
- Name
- io.github.bonigarcia:webdrivermanager
- View open source insights on deps.dev
- Purl
- pkg:maven/io.github.bonigarcia/webdrivermanager
Affected versions
1.*
1.0.0
1.0.1
1.1.0
1.1.1
1.1.2
1.2.0
1.2.1
1.2.2
1.2.3
1.2.4
1.3.0
1.3.1
1.4.0
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.4.6
1.4.7
1.4.8
1.4.9
1.4.10
1.5.0
1.5.1
1.6.0
1.6.1
1.6.2
1.7.0
1.7.1
1.7.2
2.*
2.0.0
2.0.1
2.1.0
2.2.0
2.2.1
2.2.2
2.2.3
2.2.4
2.2.5
3.*
3.0.0
3.1.0
3.1.1
3.2.0
3.3.0
3.4.0
3.5.0
3.6.0
3.6.1
3.6.2
3.7.0
3.7.1
3.8.0
3.8.1
4.*
4.0.0
4.1.0
4.2.0
4.2.1
4.2.2
4.3.0
4.3.1
4.4.0
4.4.1
4.4.2
4.4.3
5.*
5.0.0
5.0.1
5.0.2
5.0.3
5.1.0
5.1.1
5.2.0
5.2.1
5.2.2
5.2.3
5.3.0
5.3.1
5.3.2
5.3.3
5.4.0
5.4.1
5.5.0
5.5.1
5.5.2
5.5.3
5.6.0
5.6.1
5.6.2
5.6.3
5.6.4
5.7.0
5.8.0
5.9.0
5.9.1
5.9.2
5.9.3
6.*
6.0.0
6.0.1