XXE injection can occur in i-net Clear Reports 2019 19.0.287 (Designer), as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a weakly configured XML parser.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-07-15T19:09:41
Updated: 2024-08-04T12:04:22.509Z
Reserved: 2020-05-06T00:00:00
Link: CVE-2020-12684
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-07-15T20:15:13.037
Modified: 2024-11-21T05:00:04.133
Link: CVE-2020-12684
Redhat
No data.