Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
Metrics
Affected Vendors & Products
References
History
Mon, 21 Oct 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Microfocus
Microfocus application Automation Tools |
|
CPEs | cpe:2.3:a:microfocus:application_automation_tools:*:*:*:*:*:jenkins:*:* | |
Vendors & Products |
Microfocus
Microfocus application Automation Tools |
|
Metrics |
cvssV3_1
|
Wed, 16 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 16 Oct 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below. | |
Title | Insecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation Tools | |
Weaknesses | CWE-611 | |
References |
| |
Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: OpenText
Published: 2024-10-16T16:41:22.265Z
Updated: 2024-10-16T18:53:09.645Z
Reserved: 2024-05-09T14:46:01.655Z
Link: CVE-2024-4690
Vulnrichment
Updated: 2024-10-16T18:53:06.184Z
NVD
Status : Analyzed
Published: 2024-10-16T17:15:17.740
Modified: 2024-10-21T15:51:10.467
Link: CVE-2024-4690
Redhat
No data.