CWE-112 (XML验证缺失) — Vulnerability Class 7

7 vulnerabilities classified as CWE-112 (XML验证缺失). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-1190	Org.keycloak/keycloak-services: keycloak saml brokering: response delay due to unchecked notonorafter in subjectconfirmationdata — Red Hat build of Keycloak 26.4	3.1	Low	2026-01-26
CVE-2023-40310	Missing XML Validation vulnerability in SAP PowerDesigner Client BPMN2 import — SAP PowerDesigner Client	6.5	Medium	2023-10-10
CVE-2021-27780	HCL BigFix Mobile / Modern Client Management is vulnerable to unauthenticated XML interaction — HCL BigFix Mobile / Modern Client Management	5.3	Medium	2022-05-27
CVE-2022-28213	SAP BusinessObjects Business Intelligence Platform 安全漏洞 — SAP BusinessObjects Business Intelligence Platform	8.1	-	2022-04-12
CVE-2021-1359	Cisco Web Security Appliance Privilege Escalation Vulnerability — Cisco Web Security Appliance (WSA)	6.3	Medium	2021-07-08
CVE-2020-27282	Hamilton-medical Hamilton-T1 安全漏洞 — Hamilton Medical AG, T1-Ventillator	4.6	-	2021-03-15
CVE-2020-1975	Missing XML Validation in PAN-OS Web Interface — PAN-OS	6.8	Medium	2020-02-12

Vulnerabilities classified as CWE-112 (XML验证缺失) represent 7 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.