CVE-2023-26264
Talend Data Catalog (all versions before 8.0-20220907) is reported vulnerable to XML External Entity (XXE) attacks. The issue is in the license parsing code; for CVE-2023-26263 the XXE can be triggered via the /MIMBWebServices/license endpoint in remote harvesting flows, with CVSSv3.1 metrics ind...