CVE-2018-20687

2019-11-18T19:15:00
ID CVE-2018-20687
Type cve
Reporter cve@mitre.org
Modified 2019-11-21T20:06:00

Description

An XML external entity (XXE) vulnerability in CommandCenterWebServices/.*?wsdl in Raritan CommandCenter Secure Gateway before 8.0.0 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.