Security Advisory

CVE-2024-21765

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-24 01:32:42

Last updated 2025-06-20 19:26:21

Assigner jpcert

State PUBLISHED

Description

Electronic Delivery Check System (Doboku) Ver.18.1.0 and earlier, Electronic Delivery Check System (Dentsu) Ver.12.1.0 and earlier, Electronic Delivery Check System (Kikai) Ver.10.1.0 and earlier, and Electronic delivery item Inspection Support SystemVer.4.0.31 and earlier improperly restrict XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.

← Browse all CVEs View on cve.org ↗