Published: 2019/02/27  Last Updated: 2019/02/27

Information from TIS Inc.

Vulnerability ID:JVN#56542712
Title:Multiple vulnerabilities in Nablarch

This is a statement from the vendor itself with no modification by JPCERT/CC.

・CVE-2019-5918:The vulnerability in the function of generic formatter by XXE attacks(CWE-611)

・CVE-2019-5919:An incomplete cryptography of the data store function by using hidden tag(CWE-310)