CVE-2025-4641

Critical CVSS: 9.3

Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager WebDriverManager on Windows, MacOS, Linux (XML parsing components modules) allows Data Serialization External Entities Blowup. This vulnerability is associated with program files src/main/java/io/github/bonigarcia/wdm/WebDriverManager.java.

This issue affects webdrivermanager: from 1.0.0 before 6.0.2.

Vendor

Product

CWE

CWE-611

Yayın Tarihi

2025-05-14 19:15:53

Güncelleme

2025-05-16 14:43:26

Source Identifier

cve_disclosure@tech.gov.sg

KEV Date Added

Kategoriler

CWE-611 CRITICAL 2025

Referanslar

https://github.com/bonigarcia/webdrivermanager/pull/1458