Описание
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microfocus:fortify_audit_workbench:16.10:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:fortify_audit_workbench:16.20:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:fortify_audit_workbench:17.10:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:microfocus:fortify_software_security_center:16.10:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:fortify_software_security_center:16.20:*:*:*:*:*:*:*
cpe:2.3:a:microfocus:fortify_software_security_center:17.10:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00211
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-611
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
EPSS
Процентиль: 44%
0.00211
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-611