Yworks Yed
2 CVEs affecting Yworks Yed. Latest disclosed: 2020-09-17. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-25216 | Critical | 9.8 | 2020-09-17 | yWorks yEd Desktop before 3.20.1 allows code execution via an XSL Transformation when using an XML file in conjunction with a custom stylesheet. |
CVE-2020-25215 | Critical | 9.8 | 2020-09-17 | yWorks yEd Desktop before 3.20.1 allows XXE attacks via an XML or GraphML document. |