Xxe

2023-05-1006:15:00

PRIOn knowledge base

www.prio-n.com

shinseiyo

sogo soft

xml

vulnerability

attacker

nvd

0.002 Low

EPSS

Percentile

61.0%

JSON

Shinseiyo Sogo Soft (7.9A) and earlier improperly restricts XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the PC may be accessed by an attacker.

CPENameOperatorVersion
shinseiyo_sogo_softeq<= 7.9a

CPE	Name	Operator	Version
	shinseiyo_sogo_soft	eq	<= 7.9a

References

jvn.jp/en/jp/JVN73178249/

www.touki-kyoutaku-online.moj.go.jp/

0.002 Low

EPSS

Percentile

61.0%

JSON

Related for PRION:CVE-2023-27527