2022-08-30 07:35:13
trellix
PUBLISHED
Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldnt usually have access to via a carefully constructed XML file, which the DLP Agent doesnt parse correctly.