Описание
VISAM VBASE version 11.6.0.6 processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:visam:vbase_web-remote:11.6.0.6:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00211
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-611
CWE-611
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
VISAM VBASE version 11.6.0.6 processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.
EPSS
Процентиль: 43%
0.00211
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-611
CWE-611