Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Safe Software FME Server v2021.2.5, v2022.0.0.2 and below was discovered to contain a XML External Entity (XXE) vulnerability which allows authenticated attackers to perform data exfiltration or Server-Side Request Forgery (SSRF) attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
Safe Software FME Server 代码问题漏洞
Vulnerability Description
Safe Software FME Server是加拿大Safe Software公司的一个网络数据转换应用程序。用于在无代码环境中自动化数据和应用程序集成工作流程。 Safe Software FME Server v2022.0.1.1版本及之前版本存在代码问题漏洞。攻击者利用该漏洞执行数据过滤或服务器端请求伪造(SSRF)攻击。
CVSS Information
N/A
Vulnerability Type
N/A