The vulnerability of the “ASSaD-ID” biometrics system’s software lies in the improper restriction on XML links to external objects, which allows a perpetrator to carry out an SSRF attack.
The vulnerability of the “ASSaD-ID” biometrics system’s software is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability allows a malicious actor to execute an SSRF attack and execute arbitrary code within the system...