CVE-2019-19144
CVE-2019-19144 applies to the Quantum DXi6702 disk backup appliance (firmware 2.3.0.3, build 304). The root cause is an XML External Entity (XXE) vulnerability in the REST endpoint at /rest/Users?action=authenticate, enabling external entities to be processed. This can lead to information disclos...