exploitDog

GHSA-84p4-qfpm-85hx

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.

Ссылки

EPSS

Процентиль: 60%

0.00397

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-611

Связанные уязвимости

CVE-2018-13826

CVSS3: 9.1

nvd

больше 7 лет назад

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.

EPSS

Процентиль: 60%

0.00397

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-611