XML external entity (XXE) vulnerability in the RSSDashlet dashlet in SugarCRM before 6.5.17 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-01T17:00:00
Updated: 2024-08-06T10:35:57.081Z
Reserved: 2014-05-06T00:00:00
Link: CVE-2014-3244
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-02-01T17:29:00.570
Modified: 2018-02-15T16:23:45.273
Link: CVE-2014-3244
Redhat
No data.