Количество 2
Количество 2
CVE-2022-27193
почти 4 года назад
CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities (XXE). This leads to the inclusion of arbitrary (local) file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter.
CVSS3: 6.1
EPSS: Низкий
GHSA-m8gq-83gh-v42v
почти 4 года назад
XML External Entities Vulnerability in CVRF-CSAF-Converter
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-27193 CVRF-CSAF-Converter before 1.0.0-rc2 resolves XML External Entities (XXE). This leads to the inclusion of arbitrary (local) file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter. | CVSS3: 6.1 | 0% Низкий | почти 4 года назад |
| GHSA-m8gq-83gh-v42v XML External Entities Vulnerability in CVRF-CSAF-Converter | CVSS3: 6.1 | 0% Низкий | почти 4 года назад |
Уязвимостей на страницу
20