Falhas do tipo CWE-611

573 resultados
CVE-2021-37178A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). An XML external entity injection vulnerability in the uEPSS 0.9%CVE-2021-3902CRITICALImproper Restriction of XML External Entity Reference in dompdf/dompdfEPSS 0.9%CVE-2024-52007HIGHXXE vulnerability in XSLT parsing in `org.hl7.fhir.core`EPSS 0.9%CVE-2023-24187HIGHAn XML External Entity (XXE) vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to EPSS 0.9%CVE-2022-32458HIGHData Systems Consulting Co., Ltd. BPM - XML External Entity (XXE) InjectionEPSS 0.9%CVE-2021-3836CRITICALImproper Restriction of XML External Entity Reference in dbeaver/dbeaverEPSS 0.9%CVE-2026-26171HIGH.NET Denial of Service VulnerabilityEPSS 0.9%CVE-2023-24470CRITICALPotential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.EPSS 0.9%CVE-2025-34142MEDIUMETQ Reliance CG < SE.2025.1 / < 2025.1.2 XXE Injection in SSO SAML HandlerEPSS 0.9%CVE-2023-23926MEDIUMAPOC (Awesome Procedures on Cypher) is an add-on library for Neo4j. An XML External Entity (XXE) vulnerability found in the apoc.import.grapEPSS 0.9%CVE-2022-25628HIGHAn authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4EPSS 0.9%CVE-2020-28387A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP3). When opeEPSS 0.9%CVE-2019-17637In all versions of Eclipse Web Tools Platform through release 3.18 (2020-06), XML and DTD files referring to external entities could be explEPSS 0.9%CVE-2022-43415HIGHJenkins REPO Plugin 1.15.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.EPSS 0.9%CVE-2023-50380MEDIUMApache Ambari: authenticated users could perform XXE to read arbitrary files on the serverEPSS 0.9%CVE-2023-27554MEDIUMIBM WebSphere Application Server XML external entity injectionEPSS 0.9%CVE-2021-1483MEDIUMCisco SD-WAN vManage Software XML External Entity VulnerabilityEPSS 0.9%CVE-2021-41042In Eclipse Lyo versions 1.0.0 to 4.1.0, a TransformerFactory is initialized with the defaults that do not restrict DTD loading when working EPSS 0.9%CVE-2024-27266HIGHIBM Maximo Application Suite XML external entity injectionEPSS 0.8%CVE-2020-36641MEDIUMgturri aXMLRPC ResponseParser.java ResponseParser xml external entity referenceEPSS 0.8%