exploitDog

GHSA-vg34-vmvf-qg4r

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

XML external entity (XXE) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote authenticated users to cause a denial of service (memory consumption) via crafted XML data. IBM X-Force ID: 108357.

XML external entity (XXE) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote authenticated users to cause a denial of service (memory consumption) via crafted XML data. IBM X-Force ID: 108357.

Ссылки

EPSS

Процентиль: 60%

0.00395

Низкий

6.5 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2015-7461

CVSS3: 6.5

nvd

почти 8 лет назад

XML external entity (XXE) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote authenticated users to cause a denial of service (memory consumption) via crafted XML data. IBM X-Force ID: 108357.

EPSS

Процентиль: 60%

0.00395

Низкий

6.5 Medium

CVSS3

CVE ID