XML External Entity (XXE) Vulnerability in Eclipse IDE 2017.2.5 and Earlier

XML External Entity (XXE) Vulnerability in Eclipse IDE 2017.2.5 and Earlier

CVE-2017-8315 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on Androidmanifest.xml.

Learn more about our Cis Benchmark Audit For Google Android.