Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentJpcertVULNRICHMENT:CVE-2023-46802
HistoryNov 06, 2023 - 1:25 a.m.

CVE-2023-46802

2023-11-0601:25:12
jpcert
github.com
2
e-tax
xml parser
vulnerability
cve-2023-46802
xxe
security

AI Score

6.9

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

e-Tax software Version3.0.10 and earlier improperly restricts XML external entity references (XXE) due to the configuration of the embedded XML parser. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.

Related

cve 1
cvelist 1
prion 1
jvn 1
nvd 1
cve
cve
CVE-2023-46802
2023-11-06 02:15:07
cvelist
cvelist
CVE-2023-46802
2023-11-06 01:25:12
prion
prion
Xxe
2023-11-06 02:15:00
jvn
jvn
JVN#14762986: Improper restriction of XML external entity references (XXE) in e-Tax software
2023-11-02 00:00:00
nvd
nvd
CVE-2023-46802
2023-11-06 02:15:07

AI Score

6.9

Confidence

Low

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2023-46802
cve1cvelist1prion1jvn1nvd1