← voltar
CVE-2020-12684

CVE-2020-12684

EPSS 1.1%
XXE injection can occur in i-net Clear Reports 2019 19.0.287 (Designer), as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a weakly configured XML parser.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.inetsoftware.de/documentation/clear-reports/release-notes/releaseshttps://www.inetsoftware.de/documentation/clear-reports/release-notes/releases/changes_20.4