Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The XML parser in the Reference Data Management component in the server in IBM InfoSphere Master Data Management (MDM) 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2 allows remote attackers to read arbitrary files, and consequently obtain administrative access, via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM InfoSphere Master Data Management Reference Data Management组件安全漏洞
Vulnerability Description
IBM InfoSphere Master Data Management(MDM)是美国IBM公司的一套用于帮助组织管理整个企业范围内的主数据(关于客户、供应商、产品和帐户的信息)的解决方案。Reference Data Management(RDM)是其中的一个参考数据管理组件。 IBM InfoSphere MDM的服务器中的Reference Data Management组件中的XML解析器中存在安全漏洞。远程攻击者可借助外部实体声明和实体引用利用该漏洞读取任意文件,获取管理员访问权限。以下版本
CVSS Information
N/A
Vulnerability Type
N/A