HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data
References
Link | Resource |
---|---|
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0077917 | Vendor Advisory |
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0077917 | Vendor Advisory |
Configurations
History
21 Nov 2024, 04:43
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0077917 - Vendor Advisory |
Information
Published : 2020-04-07 16:15
Updated : 2024-11-21 04:43
NVD link : CVE-2019-4391
Mitre link : CVE-2019-4391
CVE.ORG link : CVE-2019-4391
JSON object : View
Products Affected
hcltech
- appscan
CWE
CWE-611
Improper Restriction of XML External Entity Reference