PT-2024-28454 · Mendelson · Mendelson As4

Name of the Vulnerable Software and Affected Versions: MENDELSON AS4 versions prior to 2024 B376 Description: The issue arises when a trading partner provides prepared XML data, exploiting a client-side vulnerability. This allows files to be written to the computer running the client process when...

MENDELSON AS4 Security Vulnerability

MENDELSON AS4 is an out-of-the-box B2B document exchange solution from MENDELSON. A security vulnerability exists in versions prior to MENDELSON AS4 2024 B376 that stems from the fact that when a trading partner provides prepared XML data, the file can be written to a computer that is running a...