CVE-2020-10990

CVE-2020-10990

EPSS 1.2%

An XXE issue exists in Accenture Mercury before 1.12.28 because of the platformlambda/core/serializers/SimpleXmlParser.java component.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Accenture/mercury/commit/f647a01347485d2afe3a0b735eab3d0121d61f46 https://github.com/Accenture/mercury/issues/13