3 matches found
CVE-2023-4554
Improper Restriction of XML External Entity Reference vulnerability in OpenText AppBuilder on Windows, Linux allows Server Side Request Forgery, Probe System Files. AppBuilder's XML processor is vulnerable to XML External Entity Processing XXE, allowing an authenticated user to upload specially...
CVE-2023-4554
OpenText AppBuilder (Windows/Linux) is affected by CVE-2023-4554 due to an XML External Entity (XXE) processing flaw in the XML processor. An authenticated attacker can upload crafted XML to trigger server-side requests and potentially disclose local server files. Affected versions are 21.2 throu...
CVE-2023-4554 XML External Entity (XXE) Processing
Improper Restriction of XML External Entity Reference vulnerability in OpenText AppBuilder on Windows, Linux allows Server Side Request Forgery, Probe System Files. AppBuilder's XML processor is vulnerable to XML External Entity Processing XXE, allowing an authenticated user to upload specially...