2 matches found
CVE-2018-11640
Affected product: Dialogic PowerMedia XMS (web service). Vulnerability: XML External Entity (XXE) injection in the web service. Versions affected: PowerMedia XMS before 3.5 SU2. Impact: remote attacker can read arbitrary files or cause denial of service (resource consumption). Severity: CVSS v3 b...
CVE-2018-11640
XML External Entity XXE vulnerability in the web service in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to read arbitrary files or cause a denial of service resource consumption...