Security Advisory

CVE-2023-6280

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-19 15:00:07

Last updated 2024-08-02 08:28:21

Assigner INCIBE

State PUBLISHED

Description

An XXE (XML External Entity) vulnerability has been detected in 52North WPS affecting versions prior to 4.0.0-beta.11. This vulnerability allows the use of external entities in its WebProcessingService servlet for an attacker to retrieve files by making HTTP requests to the internal network.

← Browse all CVEs View on cve.org ↗