5 matches found
CVE-2019-19144
XML External Entity Injection vulnerability in Quantum DXi6702 2.3.0.3 11449-53631 Build304 devices via rest/Users?action=authenticate...
CVE-2019-19144
creationtimestamp| type| source ---|---|--- 2025-08-01 19:02:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvednmr23r2s...
CVE-2019-19144
XML External Entity Injection vulnerability in Quantum DXi6702 2.3.0.3 11449-53631 Build304 devices via rest/Users?action=authenticate...
CVE-2019-19144
XML External Entity Injection vulnerability in Quantum DXi6702 2.3.0.3 11449-53631 Build304 devices via rest/Users?action=authenticate...
CVE-2019-19144
CVE-2019-19144 applies to the Quantum DXi6702 disk backup appliance (firmware 2.3.0.3, build 304). The root cause is an XML External Entity (XXE) vulnerability in the REST endpoint at /rest/Users?action=authenticate, enabling external entities to be processed. This can lead to information disclos...