Odata4j Project Odata4j — known CVE vulnerabilities
Every CVE whose affected-product data names Odata4j Project Odata4j, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2016-11023 — CVSS 9.8 (critical): odata4j 0.7.0 allows ExecuteCountQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
CVE-2016-11024 — CVSS 9.8 (critical): odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
CVE-2014-0171 — CVSS 5.0 (medium): XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization before 6.0.0…