Lucene search
HistoryAug 03, 2023 - 10:15 p.m.
CVE-2023-30951
foundry magritte plugin
rest-source
xxe vulnerability
xml external entity attack
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
28.2%
The Foundry Magritte plugin rest-source was found to be vulnerable to an an XML external Entity attack (XXE).
Affected configurations
Node
palantirmagritte-rest-source-bundleRange<7.210.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| palantir | magritte-rest-source-bundle | * | cpe:2.3:a:palantir:magritte-rest-source-bundle:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-30951 CVE-2023-30951
2023-08-03 21:07:11
prion
prion
Xxe
2023-08-03 22:15:00
cve
cve
CVE-2023-30951
2023-08-03 22:15:11
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
28.2%
Related for NVD:CVE-2023-30951