Security Advisory

CVE-2023-37497

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-03 21:14:43

Last updated 2024-10-17 15:00:50

Assigner HCL

State PUBLISHED

Description

The Unica application exposes an API which accepts arbitrary XML input. By manipulating the given XML, an authenticated attacker with certain rights can successfully perform XML External Entity attacks (XXE) against the backend service.

← Browse all CVEs View on cve.org ↗