Security Advisory

CVE-2020-11991

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-11 13:28:20

Last updated 2024-08-04 11:48:57

Assigner apache

State PUBLISHED

Description

When using the StreamGenerator, the code parse a user-provided XML. A specially crafted XML, including external system entities, could be used to access any file on the server system.

← Browse all CVEs View on cve.org ↗