CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

Prion•added 2020/01/05 11:15 p.m.•12 views

Xxe

An issue was discovered in Determine formerly Selectica Contract Lifecycle Management CLM in v5.4. An XML external entity XXE vulnerability in the upload definition feature in definitionuploadattach.jsp allows authenticated remote attackers to read arbitrary files including configuration files...

4CVSS5.2AI score0.00721EPSS

Exploits1References1Affected Software1

CVE•added 2020/01/05 10:12 p.m.•74 views

CVE-2019-20153

CVE-2019-20153 concerns Determine Contract Lifecycle Management (CLM) v5.4, where an XML External Entity (XXE) flaw in the upload definition feature (definition_upload_attach.jsp) allows authenticated remote attackers to read arbitrary files, including configuration files with administrative cred...

4.9CVSS5.1AI score0.00721EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by