exploitDog

CVE-2013-1140

Опубликовано: 06 мар. 2013

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCue55093.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:cisco:security_monitoring_analysis_and_response_system:*:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00379

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-q8xw-ccrc-rm4j

github

больше 3 лет назад

The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCue55093.

EPSS

Процентиль: 59%

0.00379

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200