Improper Restriction of XML External Entity Reference vulnerability in Connext Professional (Core Libraries) allows Serialized Data External Linking.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.1, from 6.1.0 before 6.1.*, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.3x before 5.2.*.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XRti Connext Professional
APPRti4.3.0 – 5.2.35.3.0 – 5.3.1.456.0.0 – 6.0.1.406.1.0 – 6.1.2.277.0.0 – 7.3.1.1 (bez)7.4.0 – 7.7.0 (bez)
Related vulnerabilities
SQL Injection w RTI Connext Professional (Queuing Service)
Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Servi...
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in RTI Connext Professional (C...
Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipu...
Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipu...