Security Advisory
CVE-2018-11640
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
XML External Entity (XXE) vulnerability in the web service in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to read arbitrary files or cause a denial of service (resource consumption).