Falhas do tipo CWE-611
576 resultadosCVE-2025-33121HIGHIBM QRadar SIEM XML external entity injectionEPSS 0.4%CVE-2025-10183CRITICALXML External Entity Injection in TecConnect 4.1EPSS 0.4%CVE-2022-45194LOWCBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.EPSS 0.4%CVE-2025-24521MEDIUMKeysight Ixia Vision Product Family Improper Restriction of XML External Entity ReferenceEPSS 0.4%CVE-2024-49535MEDIUMAcrobat Reader | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)EPSS 0.4%CVE-2024-8602MEDIUMXML Eternal Entity Attack in the Software Library taxstatement.jarEPSS 0.4%CVE-2023-50168HIGHPega Platform from 6.x to 8.8.4 is affected by an XXE issue with PDF Generation.EPSS 0.4%CVE-2025-6438MEDIUMA
CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could
cause manipulation of SOAP API callsEPSS 0.4%CVE-2017-7907—An Improper XML Parser Configuration issue was discovered in Schneider Electric Wonderware Historian Client 2014 R2 SP1 and prior. An impropEPSS 0.4%CVE-2023-4218MEDIUMXXE in eclipse.platform / Eclipse IDEEPSS 0.4%CVE-2025-11035MEDIUMJinher OA text xml external entity referenceEPSS 0.4%CVE-2025-30018HIGHMultiple vulnerabilities in SAP Supplier Relationship Management (Live Auction Cockpit)EPSS 0.4%CVE-2025-14478HIGHDemo Importer Plus <= 2.0.9 - Authenticated (Author+) Blind XML External Entity Injection via SVG File UploadEPSS 0.4%CVE-2025-10713MEDIUMXML External Entity (XXE) Vulnerability in Multiple WSO2 Products Due to Improper XML Parser ConfigurationEPSS 0.4%CVE-2025-54992MEDIUMOpenKilda XXE in SAML configurationEPSS 0.4%CVE-2023-52239MEDIUMThe XML parser in Magic xpi Integration Platform 4.13.4 allows XXE attacks, e.g., via onItemImport.EPSS 0.4%CVE-2024-2374HIGHXML External Entity Injection in Multiple WSO2 Products Allows Arbitrary file read and Denial of ServiceEPSS 0.4%CVE-2024-4690MEDIUMInsecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation ToolsEPSS 0.4%CVE-2025-47778MEDIUMSulu vulnerable to XXE in SVG File upload InspectorEPSS 0.4%CVE-2023-30951MEDIUMCVE-2023-30951 EPSS 0.4%