Security Advisory

CVE-2024-37388

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-07 00:00:00

Last updated 2024-10-30 19:08:31

Assigner mitre

State PUBLISHED

Description

An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of lxml before v4.9.1 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input.

← Browse all CVEs View on cve.org ↗