Security Advisory

CVE-2022-2330

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-30 07:35:13

Last updated 2024-08-03 00:32:09

Assigner trellix

State PUBLISHED

Description

Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldnt usually have access to via a carefully constructed XML file, which the DLP Agent doesnt parse correctly.

← Browse all CVEs View on cve.org ↗