Fallos del tipo CWE-611
576 resultadosCVE-2024-22380MEDIUMElectronic Delivery Check System (Ministry of Agriculture, Forestry and Fisheries The Agriculture and Rural Development Project Version) MarEPSS 0.2%CVE-2026-12975HIGHApicurio/apicurio-registry: apicurio-registry: unhardened saxparser in content-type detection leads to blind xxe / ssrf / billion-laughs dosEPSS 0.2%CVE-2023-29498MEDIUMImproper restriction of XML external entity reference (XXE) vulnerability exists in FRENIC RHC Loader v1.1.0.3 and earlier. If a user opens EPSS 0.2%CVE-2023-22322MEDIUMImproper restriction of XML external entity reference (XXE) vulnerability exists in OMRON CX-Motion Pro 1.4.6.013 and earlier. If a user opeEPSS 0.2%CVE-2023-26264MEDIUMAll versions of Talend Data Catalog before 8.0-20220907 are potentially vulnerable to XML External Entity (XXE) attacks in the license parsiEPSS 0.2%CVE-2024-39586LOWDell AppSync Server, version 4.3 through 4.6, contains an XML External Entity Injection vulnerability. An adjacent high privileged attacker EPSS 0.2%CVE-2020-37192MEDIUMMSN Password Recovery 1.30 - XML External Entity InjectionEPSS 0.2%CVE-2025-14543HIGHImproper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Core Libraries) allows Serialized Data External Linking.EPSS 0.2%CVE-2026-4980MEDIUMImproper Restriction of XML External Entity Reference in InkscapeEPSS 0.2%CVE-2026-2253HIGHHitachi Vantara Pentaho Data Integration & Analytics - Improper Restriction of XML External Entity ReferenceEPSS 0.2%CVE-2025-4338MEDIUMLantronix Device Installer Improper Restriction of XML External Entity ReferenceEPSS 0.2%CVE-2024-9044MEDIUMXML External Entity (XXE) Vulnerability in EasyTaxEPSS 0.2%CVE-2026-6807MEDIUMNSA GRASSMARLIN Improper Restriction of XML External Entity ReferenceEPSS 0.2%CVE-2024-21796MEDIUMElectronic Deliverables Creation Support Tool (Construction Edition) prior to Ver1.0.4 and Electronic Deliverables Creation Support Tool (DeEPSS 0.2%CVE-2023-37200MEDIUM
A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that
could cause loss of confidentiality when replaciEPSS 0.2%CVE-2022-46827LOWIn JetBrains IntelliJ IDEA before 2022.3 an XXE attack leading to SSRF via requests to custom plugin repositories was possible.EPSS 0.2%CVE-2022-45588HIGHAll versions before R2022-09 of Talend's Remote Engine Gen 2 are potentially vulnerable to XML External Entity (XXE) type of attacks. Users EPSS 0.2%CVE-2024-49704MEDIUMA vulnerability has been identified in COMOS V10.3 (All versions < V10.3.3.5.8), COMOS V10.4.0 (All versions), COMOS V10.4.1 (All versions),EPSS 0.2%CVE-2026-23739LOWAsterisk xml.c uses unsafe XML_PARSE_NOENT leading to potential XXE InjectionEPSS 0.2%CVE-2025-29932MEDIUMIn JetBrains GoLand before 2025.1 an XXE during debugging was possibleEPSS 0.2%