{"id":"OESA-2025-1966","summary":"xmlunit security update","details":"Security Fix(es):\n\nA vulnerability was found in xmlunit-core. It has been declared as problematic.As an impact it is known to affect confidentiality, integrity, and availability.Upgrading to version 2.10.0 eliminates this vulnerability.(CVE-2024-31573)","modified":"2026-03-11T07:10:53.552513Z","published":"2025-08-08T11:16:19Z","upstream":["CVE-2024-31573"],"database_specific":{"severity":"Medium"},"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1966"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-31573"}],"affected":[{"package":{"name":"xmlunit","ecosystem":"openEuler:22.03-LTS-SP4","purl":"pkg:rpm/openEuler/xmlunit&distro=openEuler-22.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.7.0-2.oe2203sp4"}]}],"ecosystem_specific":{"noarch":["xmlunit-2.7.0-2.oe2203sp4.noarch.rpm","xmlunit-assertj-2.7.0-2.oe2203sp4.noarch.rpm","xmlunit-core-2.7.0-2.oe2203sp4.noarch.rpm","xmlunit-legacy-2.7.0-2.oe2203sp4.noarch.rpm","xmlunit-matchers-2.7.0-2.oe2203sp4.noarch.rpm","xmlunit-placeholders-2.7.0-2.oe2203sp4.noarch.rpm"],"src":["xmlunit-2.7.0-2.oe2203sp4.src.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2025-1966.json"}}],"schema_version":"1.7.5"}