Описание
An XML External Entity (XXE) vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities.
EPSS
Процентиль: 90%
0.06005
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-611
Связанные уязвимости
CVSS3: 9.1
redhat
больше 1 года назад
An XML External Entity (XXE) vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities.
CVSS3: 9.8
github
больше 1 года назад
HAPI FHIR XML External Entity (XXE) vulnerability
EPSS
Процентиль: 90%
0.06005
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-611