—
PYSEC-2026-1993
unstructured XML External Entity (XXE)
상세
unstructured v.0.14.2 and before is vulnerable to XML External Entity (XXE) via the XMLParser.
이 버전이 영향받나요?
사용 중인 패키지 버전을 입력하면 즉시 평가합니다.
영향 패키지
참고
- https://nvd.nist.gov/vuln/detail/CVE-2024-46455 [ADVISORY]
- https://github.com/Unstructured-IO/unstructured/pull/3088 [WEB]
- https://github.com/Unstructured-IO/unstructured/commit/171b5df09fc3346aba8ce91c04de5b3e094a86bd [WEB]
- https://binarysouljour.me/cve-2024-46455 [WEB]
- https://github.com/Unstructured-IO/unstructured [PACKAGE]
- https://www.tenable.com/cve/CVE-2024-46455 [WEB]
- https://pypi.org/project/unstructured [PACKAGE]
- https://github.com/advisories/GHSA-32r8-54hf-c9p3 [ADVISORY]