Security Advisory

CVE-2024-51445

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-13 09:38:22

Last updated 2025-05-13 19:02:54

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All versions < V2404.4). The affected application contains a XML External Entity Injection (XXE) vulnerability in the docx import feature. This could allow an authenticated remote attacker to read arbitrary data from the application server.

← Browse all CVEs View on cve.org ↗