System	Score	Found at
generic_textual	MODERATE	http://mail-archives.apache.org/mod_mbox/jackrabbit-announce/201505.mbox/%3C555DA644.8080908%40greenbytes.de%3E
generic_textual	MODERATE	http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html
epss	0.31034	https://api.first.org/data/v1/epss?cve=CVE-2015-1833
generic_textual	MODERATE	https://github.com/apache/jackrabbit
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/17e9f68f5a3f05ded20569777a7b07422680612d
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/26e601934d0f439f0a61d62265f52936d79df40d
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/3903739363b79deb7579802fbc27b9b7448218b2
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/6191b366c607e65325a0116097aca8a359b36486
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/89c5c4ed6ab250ad609829517f167d2dbe0abdd0
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/b7fa1ae39641936872617ff95363353b0345b777
generic_textual	MODERATE	https://github.com/apache/jackrabbit/commit/ddf9a3cd408397d0805917299c4114b09449373d
generic_textual	MODERATE	https://issues.apache.org/jira/browse/JCR-3883
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2015-1833
generic_textual	MODERATE	https://www.exploit-db.com/exploits/37110
generic_textual	MODERATE	http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt
generic_textual	MODERATE	http://www.debian.org/security/2015/dsa-3298

Reference id	Reference type	URL
		http://mail-archives.apache.org/mod_mbox/jackrabbit-announce/201505.mbox/%3C555DA644.8080908%40greenbytes.de%3E
		http://packetstormsecurity.com/files/132005/Jackrabbit-WebDAV-XXE-Injection.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1833.json
		https://api.first.org/data/v1/epss?cve=CVE-2015-1833
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1833
		https://github.com/apache/jackrabbit
		https://github.com/apache/jackrabbit/commit/17e9f68f5a3f05ded20569777a7b07422680612d
		https://github.com/apache/jackrabbit/commit/26e601934d0f439f0a61d62265f52936d79df40d
		https://github.com/apache/jackrabbit/commit/3903739363b79deb7579802fbc27b9b7448218b2
		https://github.com/apache/jackrabbit/commit/6191b366c607e65325a0116097aca8a359b36486
		https://github.com/apache/jackrabbit/commit/89c5c4ed6ab250ad609829517f167d2dbe0abdd0
		https://github.com/apache/jackrabbit/commit/b7fa1ae39641936872617ff95363353b0345b777
		https://github.com/apache/jackrabbit/commit/ddf9a3cd408397d0805917299c4114b09449373d
		https://issues.apache.org/jira/browse/JCR-3883
		https://nvd.nist.gov/vuln/detail/CVE-2015-1833
		https://www.exploit-db.com/exploits/37110
		https://www.exploit-db.com/exploits/37110/
		http://www.apache.org/dist/jackrabbit/2.10.1/RELEASE-NOTES.txt
		http://www.debian.org/security/2015/dsa-3298
1223883		https://bugzilla.redhat.com/show_bug.cgi?id=1223883
787316		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787316
CVE-2015-1833;OSVDB-122382	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/37110.py
GHSA-9284-j4c9-779q		https://github.com/advisories/GHSA-9284-j4c9-779q

Data source	Exploit-DB
Date added	May 26, 2015
Description	Apache JackRabbit - WebDAV XML External Entity
Ransomware campaign use	Unknown
Source publication date	May 26, 2015
Exploit type	webapps
Platform	java
Source update date	Nov. 2, 2017

Percentile	0.9686
EPSS Score	0.31034
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-10T18:20:04.680676+00:00	ProjectKB MSRImporter	Import	https://raw.githubusercontent.com/SAP/project-kb/master/MSR2019/dataset/vulas_db_msr2019_release.csv	38.6.0