8 matches found
CVE-2023-22377
Improper restriction of XML external entity reference XXE vulnerability exists in tsClinical Define.xml Generator all versions v1.0.0 to v1.4.0 and tsClinical Metadata Desktop Tools Version 1.0.3 to Version 1.1.0. If this vulnerability is exploited, an attacker may obtain an arbitrary file which...
CVE-2023-22377
Improper restriction of XML external entity reference XXE vulnerability exists in tsClinical Define.xml Generator all versions v1.0.0 to v1.4.0 and tsClinical Metadata Desktop Tools Version 1.0.3 to Version 1.1.0. If this vulnerability is exploited, an attacker may obtain an arbitrary file which...
CVE-2023-22377
Improper restriction of XML external entity reference XXE vulnerability exists in tsClinical Define.xml Generator all versions v1.0.0 to v1.4.0 and tsClinical Metadata Desktop Tools Version 1.0.3 to Version 1.1.0. If this vulnerability is exploited, an attacker may obtain an arbitrary file which...
Xxe
Improper restriction of XML external entity reference XXE vulnerability exists in tsClinical Define.xml Generator all versions v1.0.0 to v1.4.0 and tsClinical Metadata Desktop Tools Version 1.0.3 to Version 1.1.0. If this vulnerability is exploited, an attacker may obtain an arbitrary file which...
CVE-2023-22377
CVE-2023-22377 is an XXE vulnerability in tsClinical Define.xml Generator (all v1.0.0–v1.4.0) and tsClinical Metadata Desktop Tools (v1.0.3–v1.1.0). The underlying issue allows an attacker to read specially crafted XML files to obtain arbitrary files meeting a condition. Affected products include...
Improper restriction of XML external entity reference (XXE) vulnerability in tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools
Overview tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools provided by FUJITSU LIMITED contain an improper restriction of XML external entity reference XXE vulnerability CWE-611. Toyama Taku and Sakaki Ryutaro of NEC Corporation reported this vulnerability to IPA. JPCERT/CC...
tsClinical tsc-desktop 代码问题漏洞
tsClinical tsc-desktop is the tsClinical Metadata Desktop Tools. A security vulnerability exists in tsClinical tsc-desktop Define.xml Generator version v1.0.0 through v1.4.0, tsClinical Metadata Desktop Tools version 1.0.3 through 1.1.0, which stems from an XML External Entity Reference XXE...
JVN#00712821: Improper restriction of XML external entity reference (XXE) vulnerability in tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools
tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools provided by FUJITSU LIMITED contain an improper restriction of XML external entity reference XXE vulnerability CWE-611. Impact By reading a specially crafted XML file, arbitrary files which meet a certain condition may be...