CVE-2014-5035

2014-08-26T10:55:06
ID CVE-2014-5035
Type cve
Reporter NVD
Modified 2017-08-28T21:35:11

Description

The Netconf (TCP) service in OpenDaylight 1.0 allows remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference in an XML-RPC message, related to an XML External Entity (XXE) issue.