← back
CVE-2023-32639

CVE-2023-32639

EPSS 0.2%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
25 Jul 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.
Affected products
The Ministry of Justice · Applicant Programme

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN37857022/https://www.moj.go.jp/MINJI/minji06_00002.html