3 matches found
VISAM VBASE Automation Base
1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: VISAM Equipment: VBASE Vulnerabilities: Improper Restriction of XML External Entity Reference 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive information from...
CVE-2022-46286 CVE-2022-46286
Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file...
CVE-2022-46286
CVE-2022-46286 affects VISAM VBASE Automation Base prior to 11.7.5. The vulnerability stems from improper restriction of XML External Entity (XXE) references in the VBASE Editor/WebRemote/XML parsing, allowing information disclosure when a legitimate user opens a specially crafted file. Impact is...