Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:46 a.m.10 views

CVE-2024-4690

Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below...

8CVSS7AI score0.00376EPSS
Exploits0
Cvelist
Cvelist
added 2024/10/16 4:41 p.m.27 views

CVE-2024-4690 Insecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation Tools

Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below...

5.1CVSS0.00376EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/16 4:41 p.m.11 views

CVE-2024-4690 Insecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation Tools

Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below...

5.1CVSS7.2AI score0.00376EPSS
Exploits0References1
CVE
CVE
added 2024/10/16 4:41 p.m.55 views

CVE-2024-4690

CVE-2024-4690 affects the OpenText Application Automation Tools Plugin for Jenkins (versions 24.1.0 and earlier). The root cause is improper configuration of XML parsers, enabling XML external entity (XXE) attacks and DTD Injection when processing input files for build steps. Reported impact incl...

8CVSS7.9AI score0.00376EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder