Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-64108
HistoryJun 21, 2022 - 12:00 a.m.

ASG technologies ASG-Zena Cross Platform Server Enterprise Edition XML External Entity Injection Vulnerability

2022-06-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6

0.003 Low

EPSS

Percentile

68.7%

JSON

ASG technologies ASG-Zena Cross Platform Server Enterprise Edition is a modern multi-platform workload automation solution from ASG technologies, Inc. An XML external entity injection vulnerability exists in ASG technologies ASG-Zena Cross Platform Server Enterprise Edition version 4.2.1, which stems from a networked system or product that does not set the correct filtering to allow references to external entities, which could be exploited by a remote attacker to could exploit the vulnerability by sending a specially crafted XML file to read the file.

Related

nvd 1
prion 1
cvelist 1
cve 1
nvd
nvd
CVE-2021-45024
2022-06-17 13:15:12
prion
prion
Xxe
2022-06-17 13:15:00
cvelist
cvelist
CVE-2021-45024
2022-06-17 11:57:47
cve
cve
CVE-2021-45024
2022-06-17 13:15:12

0.003 Low

EPSS

Percentile

68.7%

JSON
Related for CNVD-2022-64108
nvd1prion1cvelist1cve1