Lucene search
Mobiletogether Server Security Vulnerabilities
cve
Altova MobileTogether Server before 7.3 SP1 allows XXE attacks, such as an InfoSetChanges/Changes attack against /workflowmanagement, or reading mobiletogetherserver.cfg and then reading the certificate and private key.
9.1CVSS
8.3AI Score
0.068EPSS
2021-08-10 10:15 PM
83
4
cve
Altova MobileTogether Server before 7.3 SP1 allows XML exponential entity expansion, a different vulnerability than CVE-2021-37425.
7.5CVSS
8.3AI Score
0.068EPSS
2021-08-10 10:15 PM
37
4