{"dataType":"CVE_RECORD","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2018-8032","assignerOrgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","assignerShortName":"apache","dateUpdated":"2024-09-16T16:29:01.816Z","dateReserved":"2018-03-09T00:00:00.000Z","datePublished":"2018-08-02T13:00:00.000Z"},"containers":{"cna":{"datePublic":"2018-07-08T00:00:00.000Z","providerMetadata":{"orgId":"f0158376-9dc2-43b6-827c-5f631a4d8d09","shortName":"apache","dateUpdated":"2024-06-21T19:08:01.869Z"},"descriptions":[{"lang":"en","value":"Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services."}],"affected":[{"vendor":"Apache Software Foundation","product":"Apache Axis","versions":[{"version":"1.x up to and including 1.4","status":"affected"}]}],"references":[{"name":"[axis-java-dev] 20180708 [jira] [Created] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list"],"url":"http://mail-archives.apache.org/mod_mbox/axis-java-dev/201807.mbox/%3CJIRA.13170716.1531060536000.93536.1531060560060%40Atlassian.JIRA%3E"},{"name":"[axis-java-dev] 20190925 [jira] [Commented] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list"],"url":"https://lists.apache.org/thread.html/d06ed5e4eeb77d00e8d594ec01ee8ee1cba173a01ac4b18f1579d041%40%3Cjava-dev.axis.apache.org%3E"},{"name":"[axis-java-dev] 20190929 [jira] [Commented] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list"],"url":"https://lists.apache.org/thread.html/3b89bc9e9d055db7eba8835ff6501f3f5db99d2a0928ec0be9b1d17b%40%3Cjava-dev.axis.apache.org%3E"},{"url":"https://www.oracle.com/security-alerts/cpuapr2020.html"},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html"},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html"},{"url":"https://issues.apache.org/jira/browse/AXIS-2924"},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html"},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html"},{"name":"[debian-lts-announce] 20211117 [SECURITY] [DLA 2821-1] axis security update","tags":["mailing-list"],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00015.html"},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html"},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html"},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"Cross-site Scripting"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T06:46:12.311Z"},"title":"CVE Program Container","references":[{"name":"[axis-java-dev] 20180708 [jira] [Created] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list","x_transferred"],"url":"http://mail-archives.apache.org/mod_mbox/axis-java-dev/201807.mbox/%3CJIRA.13170716.1531060536000.93536.1531060560060%40Atlassian.JIRA%3E"},{"name":"[axis-java-dev] 20190925 [jira] [Commented] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list","x_transferred"],"url":"https://lists.apache.org/thread.html/d06ed5e4eeb77d00e8d594ec01ee8ee1cba173a01ac4b18f1579d041%40%3Cjava-dev.axis.apache.org%3E"},{"name":"[axis-java-dev] 20190929 [jira] [Commented] (AXIS-2924) CVE-2018-8032 XSS vulnerability","tags":["mailing-list","x_transferred"],"url":"https://lists.apache.org/thread.html/3b89bc9e9d055db7eba8835ff6501f3f5db99d2a0928ec0be9b1d17b%40%3Cjava-dev.axis.apache.org%3E"},{"url":"https://www.oracle.com/security-alerts/cpuapr2020.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpujul2020.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpujan2020.html","tags":["x_transferred"]},{"url":"https://issues.apache.org/jira/browse/AXIS-2924","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpuApr2021.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2021.html","tags":["x_transferred"]},{"name":"[debian-lts-announce] 20211117 [SECURITY] [DLA 2821-1] axis security update","tags":["mailing-list","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00015.html"},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","tags":["x_transferred"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","tags":["x_transferred"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","tags":["x_transferred"]}]}]},"dataVersion":"5.1"}