CVE-2022-0198: Improper Restriction of XML External Entity Reference

January 13, 2022 (updated January 19, 2022)

corenlp is vulnerable to Improper Restriction of XML External Entity Reference

References

github.com/stanfordnlp/corenlp/commit/1f52136321cfca68b991bd7870563d06cf96624d
huntr.dev/bounties/3d7e70fe-dddd-4b79-af62-8e058c4d5763
nvd.nist.gov/vuln/detail/CVE-2022-0198

Code Behaviors & Features

Detect and mitigate CVE-2022-0198 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →