CVE-2024-51136

Name of the Vulnerable Software and Affected Versions: openimaj version 1.3.10

Description: An XML External Entity (XXE) issue allows attackers to access sensitive information or execute arbitrary code by supplying a crafted XML file. This can lead to unauthorized access to data or execution of malicious code.

Recommendations: For openimaj version 1.3.10, consider disabling the Dmoz2CSV component until a patch is available to prevent exploitation of the XXE vulnerability. Restrict access to sensitive information and monitor for any suspicious activity related to XML file processing. At the moment, there is no information about a newer version that contains a fix for this vulnerability.