CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 1:25 a.m.•10 views

CVE-2022-25628

An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4...

8.8CVSS7.1AI score0.00889EPSS

Exploits0References1

OSV•added 2022/12/16 4:15 p.m.•2 views

CVE-2022-25628

An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4...

8.8CVSS5.8AI score0.00889EPSS

Exploits0References1

NVD•added 2022/12/16 4:15 p.m.•15 views

CVE-2022-25628

An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4...

8.8CVSS0.00889EPSS

Exploits0References1

CVE•added 2022/12/16 12:0 a.m.•55 views

CVE-2022-25628

CVE-2022-25628 describes an XML External Entity (XXE) injection vulnerability in the Symantec Identity Manager 14.4 Management Console . An authenticated user can trigger XXE, with potential data exposure or other malicious activity as implied by the vulnerability class. The CVSS data from the en...

8.8CVSS8.7AI score0.00889EPSS

Exploits0References1Affected Software1