Описание
A External Entity Reference ('XXE') vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.
Уязвимые конфигурации
Конфигурация 1Версия до 3.0.37 (исключая)
cpe:2.3:a:suse:subscription_management_tool:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00538
Низкий
6.5 Medium
CVSS3
8.1 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-611
CWE-611
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
A External Entity Reference ('XXE') vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.
EPSS
Процентиль: 67%
0.00538
Низкий
6.5 Medium
CVSS3
8.1 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-611
CWE-611