CVE-2023-50304
IBM Engineering Requirements Management DOORS XML external entity injection
IBM Engineering Requirements Management DOORS Web Access 9.7.2.8 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 273335.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Affected products
IBM · Engineering Requirements Management DOORSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →