11 matches found
CVE-2023-43624
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
EUVD-2023-48024
Malicious code in bioql PyPI...
Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Designer
Overview CX-Designer provided by OMRON Corporation contains an improper restriction of XML external entity reference XXE vulnerability CWE-611. Michael Heinzl reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact If a user opens a specially crafted project fil...
CVE-2023-43624
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
CVE-2023-43624
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
Xxe
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
CVE-2023-43624
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
CVE-2023-43624
CX-Designer Ver.3.740 and earlier included in CX-One CXONE-ALD-V4 contains an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed m...
CVE-2023-43624
CX-Designer (Omron) versions 3.740 and earlier (included in CX-One CXONE-AL[][]D-V4) are affected by an improper restriction of XML external entity references (XXE). The vulnerability may allow an attacker to craft a project file that, when opened by a user, could disclose sensitive information f...
Omron CX-Designer Code Issue Vulnerability
Omron CX-Designer is an HMI software for the 5.7- to 15-inch NS HMI series from Omron Japan. A security vulnerability exists in Omron CX-Designer Ver.3.740 and prior versions that stems from not properly restricting XML external entity references. An attacker could exploit the vulnerability to...
PT-2023-28883 · Unknown · Cx-Designer
Name of the Vulnerable Software and Affected Versions: CX-Designer versions 3.740 and earlier Description: The issue concerns an improper restriction of XML external entity reference XXE vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information ...