Known Vulnerabilities for Odata4j by Odata4j Project
Listed below are 3 of the newest known vulnerabilities associated with "Odata4j" by "Odata4j Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2016-11024 | odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued. | 9.8 - CRITICAL | 2020-03-30 | 2020-03-30 |
| CVE-2016-11023 | odata4j 0.7.0 allows ExecuteCountQueryCommand.java SQL injection. NOTE: this product is apparently discontinued. | 9.8 - CRITICAL | 2020-03-30 | 2020-03-30 |
| CVE-2014-0171 | XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization b... | 5 - MEDIUM | 2015-01-15 | 2020-03-26 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Odata4j Project | Odata4j | 0.7 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.6 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.5 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.4 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.3 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.2 | All | All | All |
| Application | Odata4j Project | Odata4j | 0.1 | All | All | All |
| Application | Odata4j Project | Odata4j | - | All | All | All |