Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2023-07-25T03:32:37.911Z
Updated: 2024-08-02T15:25:35.747Z
Reserved: 2023-05-11T04:09:45.920Z
Link: CVE-2023-32639
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-25T04:15:10.467
Modified: 2023-08-01T20:16:48.813
Link: CVE-2023-32639
Redhat
No data.