Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-611 (XML外部实体引用的不恰当限制(XXE)) — Vulnerability Class 417

417 vulnerabilities classified as CWE-611 (XML外部实体引用的不恰当限制(XXE)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-10976 Mitsubishi Electric FR Configurator2 代码问题漏洞 — Mitsubishi Electric FR Configurator2 5.5 -2019-07-25
CVE-2019-1903 Cisco Security Manager XML Entity Expansion Vulnerability — Cisco Security Manager 9.1 -2019-06-20
CVE-2019-10244 Eclipse Kura 代码问题漏洞 — Eclipse Kura 7.5 -2019-04-09
CVE-2019-1698 Cisco IoT Field Network Director XML External Entity Vulnerability — Cisco IoT Field Network Director (IoT-FND) 4.9 -2019-02-21
CVE-2019-3772 Spring Integration XML External Entity Injection (XXE) — Spring Integration 9.8 -2019-01-18
CVE-2019-3773 Spring Web Services XML External Entity Injection (XXE) — Spring Web Services 9.8 -2019-01-18
CVE-2019-3774 Spring Batch XML External Entity Injection (XXE) — Spring Batch 9.8 -2019-01-18
CVE-2018-17247 Elasticsearch Security 跨站脚本漏洞 — Elasticsearch 5.9 -2018-12-20
CVE-2018-15444 Cisco Energy Management Suite XML External Entity Vulnerability — Cisco Energy Management Suite 6.3 -2018-11-08
CVE-2018-17912 Fr. Sauter AG CASE Suite 安全漏洞 — CASE Suite 7.5 -2018-11-02
CVE-2018-12544 Eclipse Vert.x 安全漏洞 — Eclipse Vert.x 9.8 -2018-10-10
CVE-2018-10614 Wecon LeviStudioU 安全漏洞 — LeviStudioU 7.8 -2018-10-09
CVE-2018-17889 Wecon PI Studio HMI和PI Studio 安全漏洞 — PI Studio HMI 6.5 -2018-10-08
CVE-2018-0414 Cisco Secure Access Control Server XML External Entity Injection Vulnerability — Cisco Secure Access Control Server Solution Engine (ACSE) 5.7 -2018-10-05
CVE-2018-12471 External Entity processing in the RegistrationSharing module — SMT 8.1 -2018-10-04
CVE-2017-7464 Red Hat JBoss Enterprise Application Platform 安全漏洞 — JBoss 9.8 -2018-07-27
CVE-2017-7545 jbpmmigration 安全漏洞 — jbpm-designer 6.5 -2018-07-26
CVE-2018-10600 SEL AcSELerator Architect 安全漏洞 — AcSELerator Architect 9.8 -2018-07-24
CVE-2016-9487 EpubCheck 4.0.1 is vulnerable to external XML entity processing attacks — EpubCheck 7.8 -2018-07-13
CVE-2016-9491 ManageEngine Applications Manager 12 and 13 is vulnerable to privilege escalation due to improper restriction of an XML external entity — Applications Manager 4.9 -2018-07-13
CVE-2017-7465 Red Hat JBoss Enterprise Application Platform 代码注入漏洞 — jboss 9.8 -2018-06-27
CVE-2017-3206 The Action Message Format (AMF3) deserializers used by Flamingo amf-serializer by Exadel, version 2.2.0, allows external entity references (XXEs) from XML documents embedded within AMF3 messages — Flamingo amf-serializer 9.8 -2018-06-11
CVE-2018-10613 GE MDS PulseNET和MDS PulseNET Enterprise 安全漏洞 — MDS PulseNET and MDS PulseNET Enterprise 7.5 -2018-06-04
CVE-2018-1077 Red Hat Spacewalk 安全漏洞 — spacewalk 7.5 -2018-03-14
CVE-2018-0100 Cisco AnyConnect Secure Mobility Client Profile Editor 安全漏洞 — Cisco AnyConnect 6.1 -2018-01-18
CVE-2018-0108 Cisco WebEx Meetings Server 信息泄露漏洞 — Cisco WebEx Meetings Server 5.3 -2018-01-18
CVE-2017-7907 Schneider Electric Wonderware Historian Client 安全漏洞 — Schneider Electric Wonderware Historian Client 7.3 -2017-05-19

Vulnerabilities classified as CWE-611 (XML外部实体引用的不恰当限制(XXE)) represent 417 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.