Security Advisory

CVE-2020-14029

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-18 17:14:04

Last updated 2024-08-04 12:32:14

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The RSS To SMS module processes XML files in an unsafe manner. This opens the application to an XML External Entity attack that can be used to perform SSRF or read arbitrary local files.

← Browse all CVEs View on cve.org ↗