exploitDog

GHSA-f4q7-86mf-q9v2

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

WebAccess/NMS (versions prior to 3.0.2) does not sanitize XML input. Specially crafted XML input could allow an attacker to read sensitive files.

WebAccess/NMS (versions prior to 3.0.2) does not sanitize XML input. Specially crafted XML input could allow an attacker to read sensitive files.

Ссылки

EPSS

Процентиль: 38%

0.00162

Низкий

CVE ID

Связанные уязвимости

CVE-2020-10629

CVSS3: 7.5

nvd

почти 6 лет назад

WebAccess/NMS (versions prior to 3.0.2) does not sanitize XML input. Specially crafted XML input could allow an attacker to read sensitive files.

EPSS

Процентиль: 38%

0.00162

Низкий

CVE ID