CVE-2021-40511

HIGH

OBDA systems' Mastro 1.0 - DoS

Title source: llm
STIX 2.1

Description

OBDA systems’ Mastro 1.0 is vulnerable to XML Entity Expansion (aka “billion laughs”) attack allowing denial of service.

References (2)

Scores

CVSS v3 7.5
EPSS 0.0047
EPSS Percentile 64.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-776
Status published
Products (1)
obdasystems/mastro 1.0
Published Jun 21, 2022
Tracked Since Feb 18, 2026