exploitDog

GHSA-pvcp-3wfq-3hf4

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted request.

XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted request.

Ссылки

EPSS

Процентиль: 59%

0.00382

Низкий

CVE ID

Связанные уязвимости

CVE-2014-9360

nvd

около 11 лет назад

XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377 and 12.2.0.14697 allows remote attackers to read arbitrary files and trigger requests to intranet servers via a crafted request.

EPSS

Процентиль: 59%

0.00382

Низкий

CVE ID