Lucene search
K

45 matches found

Prion
Prion
added 2020/06/06 7:15 p.m.15 views

Code injection

In WSO2 API Manager 3.0.0 and earlier, WSO2 API Microgateway 2.2.0, and WSO2 IS as Key Manager 5.9.0 and earlier, Management Console allows XXE during addition or update of a Lifecycle...

6.5CVSS6.6AI score0.008EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2020/06/06 6:49 p.m.22 views

CVE-2020-13883

In WSO2 API Manager 3.0.0 and earlier, WSO2 API Microgateway 2.2.0, and WSO2 IS as Key Manager 5.9.0 and earlier, Management Console allows XXE during addition or update of a Lifecycle...

5.5CVSS6.6AI score0.008EPSS
Exploits0References1
OSV
OSV
added 2020/05/08 12:15 a.m.20 views

CVE-2020-12719

XXE during an EventPublisher update can occur in Management Console in WSO2 API Manager 3.0.0 and earlier, API Manager Analytics 2.5.0 and earlier, API Microgateway 2.2.0, Enterprise Integrator 6.4.0 and earlier, IS as Key Manager 5.9.0 and earlier, Identity Server 5.9.0 and earlier, and Identity...

7.2CVSS6.9AI score
Exploits0References1
Prion
Prion
added 2020/05/08 12:15 a.m.20 views

Code injection

XXE during an EventPublisher update can occur in Management Console in WSO2 API Manager 3.0.0 and earlier, API Manager Analytics 2.5.0 and earlier, API Microgateway 2.2.0, Enterprise Integrator 6.4.0 and earlier, IS as Key Manager 5.9.0 and earlier, Identity Server 5.9.0 and earlier, and Identity...

6.5CVSS7AI score0.01034EPSS
Exploits0References1Affected Software7
CVE
CVE
added 2020/05/07 11:40 p.m.99 views

CVE-2020-12719

CVE-2020-12719 describes an XXE condition that can occur during an EventPublisher update in the Management Console of several WSO2 products. Affected products and versions include WSO2 API Manager 3.0.0 and earlier, API Manager Analytics 2.5.0 and earlier, API Microgateway 2.2.0, Enterprise Integ...

8.7CVSS6.9AI score0.01034EPSS
Exploits0References1Affected Software7
Rows per page
Query Builder