CVE-2020-24052

Publication date

2020-08-21 14:25:50

Family

mitre

State

PUBLISHED

Description

Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition (DTD) in an XML request.