Nexus Intelligence Insights: CVE-2019-3773 Spring Web Services XML External Entity Injection (XXE) - Security Boulevard
Spring, a widely used component, makes programming multiple things in Java easier, faster, and safer. The project’s focus on speed, simplicity, and productivity has made it one of the world's most popular Java frameworks. Spring’s multifaceted use cases include building microservices, cloud apps, and event driven systems. Spring is the choice of framework for countless Java developers building sleek MVC applications. Today, however, we bring to light a serious vulnerability that has impacted some versions of Spring and offer remediation tips. If you’re an avid Spring Web user it is a good idea to check and see if you are impacted by this vulnerability.
Mar 18, 2020 ... ... Threats & Breaches » Vulnerabilities » Nexus Intelligence Insights: CVE-2019- 3773 Spring Web Services XML External Entity Injection (XXE).