Vulnerabilities for Hibernate validator (...) - CXSECURITY.COM

Vulnerabilities for 'Hibernate validator'

2014-09-30

CVE-2014-3558

CWE-264

ReflectionHelper (org.hibernate.validator.util.ReflectionHelper) in Hibernate Validator 4.1.0 before 4.2.1, 4.3.x before 4.3.2, and 5.x before 5.1.2 allows attackers to bypass Java Security Manager (JSM) restrictions and execute restricted reflection calls via a crafted application.

>>> Vendor: Hibernate 4 Products

Hibernate validator

Hibernate-validator

Copyright 2024, cxsecurity.com