exploitDog

CVE-2025-56424

Опубликовано: 08 янв. 2026

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue in Insiders Technologies GmbH e-invoice pro before release 1 Service Pack 2 allows a remote attacker to cause a denial of service via a crafted script

Ссылки

https://insiders-technologies.com/en/e-invoice/
Product
https://mind-bytes.de/xml-external-entity-xxe-injection-in-e-invoice-pro-cve-2025-56424/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:insiders-technologies:e-invoice_pro:1.0:-:*:*:*:*:*:*

EPSS

Процентиль: 36%

0.00154

Низкий

7.5 High

CVSS3

Дефекты

CWE-400

Связанные уязвимости

GHSA-5j9p-w3cm-6283

CVSS3: 7.5

github

около 1 месяца назад

An issue in Insiders Technologies GmbH e-invoice pro before release 1 Service Pack 2 allows a remote attacker to cause a denial of service via a crafted script

EPSS

Процентиль: 36%

0.00154

Низкий

7.5 High

CVSS3

Дефекты

CWE-400