Lucene search
MicrofocusCVELIST:CVE-2018-12471HistoryOct 04, 2018 - 2:00 p.m.
CVE-2018-12471 External Entity processing in the RegistrationSharing module
2018-10-0414:00:00
CWE-611
microfocus
www.cve.org
3
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
AI Score
8.8
Confidence
High
EPSS
0.002
Percentile
62.2%
A External Entity Reference (‘XXE’) vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.
CNA Affected
[
{
"product": "SMT",
"vendor": "SUSE Linux",
"versions": [
{
"lessThan": "3.0.37",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2018-12471
2018-10-04 14:29:00
prion
prion
Xxe
2018-10-04 14:29:00
nvd
nvd
CVE-2018-12471
2018-10-04 14:29:00
nessus
nessus
SUSE SLES12 Security Update : smt, yast2-smt (SUSE-SU-2018:2898-2)
2018-10-22 00:00:00
SUSE SLES12 Security Update : smt, yast2-smt (SUSE-SU-2018:2898-1)
2018-09-28 00:00:00
SUSE SLES11 Security Update : smt (SUSE-SU-2018:2899-1)
2018-10-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:2898-2)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2899-1)
2022-01-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2898-1)
2021-04-19 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
AI Score
8.8
Confidence
High
EPSS
0.002
Percentile
62.2%
Related for CVELIST:CVE-2018-12471