4 matches found
CVE-2022-45468
Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file...
VISAM VBASE Automation Base
1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: VISAM Equipment: VBASE Vulnerabilities: Improper Restriction of XML External Entity Reference 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive information from...
CVE-2022-45468 CVE-2022-45468
Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file...
CVE-2022-45468
CVE-2022-45468 affects VISAM VBASE Automation Base prior to 11.7.5. The vulnerability arises from improper restriction of XML External Entity (XXE) processing in the VBASE Editor/parse flow, allowing a valid user to disclose information by opening a specially crafted file. Impact is information d...