Xxe

2017-01-2321:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.0%

JSON

XML external entity vulnerability in PRTG Network Monitor before 16.2.23.3077/3078 allows remote authenticated users to read arbitrary files by creating a new HTTP XML/REST Value sensor that accesses a crafted XML file.

CPENameOperatorVersion
prtg_network_monitorle14.4.12.3282

CPE	Name	Operator	Version
	prtg_network_monitor	le	14.4.12.3282

References

packetstormsecurity.com/files/137255/Paessler-PRTG-Network-Monitor-14.4.12.3282-XXE-Injection.html

www.paessler.com/prtg/history/stable