Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistVmwareCVELIST:CVE-2016-7460
HistoryDec 29, 2016 - 9:02 a.m.

CVE-2016-7460

2016-12-2909:02:00
vmware
www.cve.org
6

AI Score

9.1

Confidence

High

EPSS

0.011

Percentile

84.7%

JSON

The Single Sign-On feature in VMware vCenter Server 5.5 before U3e and 6.0 before U2a and vRealize Automation 6.x before 6.2.5 allows remote attackers to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Related

ptsecurity 1
cve 1
prion 1
nvd 1
nessus 1
vmware 1
openvas 2
ptsecurity
ptsecurity
PT-2016-32: XML External Entity Injection in vCenter Server and vRealize Automation
2015-10-23 00:00:00
cve
cve
CVE-2016-7460
2016-12-29 09:59:00
prion
prion
Xxe
2016-12-29 09:59:00
nvd
nvd
CVE-2016-7460
2016-12-29 09:59:00
nessus
nessus
VMware vCenter Server 5.5.x < 5.5u3e / 6.0.x < 6.0u2a Multiple XXE Vulnerabilities (VMSA-2016-0022)
2016-12-02 00:00:00
vmware
vmware
VMware product updates address information disclosure vulnerabilities
2016-11-22 00:00:00
openvas
openvas
VMware vCenter Server XML External Entity (XXE) Vulnerability (VMSA-2016-0022)
2016-11-23 00:00:00
VMware vRealize Automation XML External Entity (XXE) Vulnerability (VMSA-2016-0022)
2016-11-23 00:00:00

AI Score

9.1

Confidence

High

EPSS

0.011

Percentile

84.7%

JSON
Related for CVELIST:CVE-2016-7460
ptsecurity1cve1prion1nvd1nessus1vmware1openvas2