Описание
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 11.7 (включая) до 11.7.1.6 (включая)
cpe:2.3:a:ibm:infosphere_information_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00169
Низкий
7.1 High
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-611
Связанные уязвимости
CVSS3: 7.1
github
3 месяца назад
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
EPSS
Процентиль: 38%
0.00169
Низкий
7.1 High
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-611