The vulnerability of the IBM Aspera Shares software lies in the incorrect limitation on XML references to external objects, which allows a hacker to expose confidential information.

The vulnerability of the IBM Aspera Shares software relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor, operating remotely, to expose confidential information...

The vulnerability of the DOCX import function in the Polarion ALM software for application lifecycle management allows a hacker to read arbitrary files.

The vulnerability of the DOCX import function in the Polarion ALM application lifecycle management software is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to read arbitrary files remotely...

The vulnerability of the Apache XML Graphics FOP transformation tool arises from improper restrictions on XML references to external objects, allowing attackers to execute XXE attacks.

The vulnerability of the Apache XML Graphics FOP transformation tool is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a remote attacker to perform XXE attacks...

The vulnerability of the validateAgainstXSD method implemented in HPE Insight Remote Support, a software solution for remote monitoring, management, and support of servers and data storage systems, allows attackers to disclose sensitive information that should be protected.

The vulnerability of the validateAgainstXSD method implemented in HPE Insight Remote Support, a software solution for remote monitoring, management, and support of servers and data storage systems, is related to incorrect restrictions on XML references to external objects. Exploiting this...

The vulnerability of the ImportXml method in the Ivanti EPM endpoint management software allows a hacker to gain access to confidential information.

The vulnerability of the ImportXml method in the Ivanti EPM endpoint management software is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to confidential information...

The vulnerability of the Spreadsheet::ParseXLSX library for the Perl programming language arises from incorrect restrictions on XML references to external objects. This allows attackers to perform XXE attacks.

The vulnerability of the Spreadsheet::ParseXLSX library for the Perl programming language relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to perform XXE attacks using a specially created XLSX file...

The vulnerability of the Libxml2 library lies in the improper limitation on XML references to external objects, which allows attackers to access confidential data.

The vulnerability of the Libxml2 library is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to gain access to confidential data...

The vulnerability of the REST API interface of the Cisco Firepower Device Manager On-Box software allows a hacker to trigger a maintenance failure.

The vulnerability of the REST API interface of the Cisco Firepower Device Manager On-Box software relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to trigger service failure remotely...

The vulnerability of the XMLInputFactory class in the OSGi Apache Karaf container allows a attacker to execute arbitrary code.

The vulnerability of the XMLInputFactory class in the OSGi Apache Karaf container is related to an incorrect limitation on XML references to external objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Microsoft XML Core Services MSXML on the Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft XML Core Services MSXML in the Windows operating system is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created web page from a remote...

The vulnerability of the Castor XML software component for Cisco WebEx Meetings Server allows a attacker to disclose protected information.

The vulnerability of the Castor XML software component for Cisco WebEx Meetings Server relates to errors in restricting XML references to external objects. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the BEx Web Java Runtime Export web service of the SAP Business Intelligence software integration platform allows a perpetrator to gain access to the file system or cause a service failure.

The vulnerability of the BEx Web Java Runtime Export Web Service application of the SAP Business Intelligence software integration platform is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain access to the...