Описание
The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuy39059.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:cisco:information_server:6.2_base:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00593
Низкий
10 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 10
github
больше 3 лет назад
The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuy39059.
EPSS
Процентиль: 69%
0.00593
Низкий
10 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other