Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2024/05/03 3:16 a.m.2 views

CVE-2023-51591

Voltronic Power ViewPower Pro doDocument XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this...

7.5CVSS5.7AI score0.01108EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/05/03 3:16 a.m.4 views

CVE-2023-51591

Voltronic Power ViewPower Pro doDocument XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this...

7.5CVSS5.8AI score0.01108EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.62 views

CVE-2023-51591

This CVE affects Voltronic Power ViewPower Pro, where the doDocument method improperly restricts XML External Entity (XXE) references, allowing an attacker to craft a document that causes the XML parser to fetch a URI and embed its contents back into the XML for processing. The vulnerability can ...

7.5CVSS6.2AI score0.01108EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/11 12:0 a.m.6 views

The vulnerability of the doDocument method in software for managing power sources in Voltronic Power View allows attackers to perform XXE attacks.

The vulnerability of the doDocument method in the software for managing power sources of Voltronic Power ViewPower Pro is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow an attacker to perform XXE attacks remotely...

6.5CVSS6.5AI score0.01108EPSS
Exploits0References5
Rows per page
Query Builder