8.1 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.2%
Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure.
docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html
www.pingidentity.com/en/resources/downloads/pingfederate.html