Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ZDI-CAN-21305: Adobe RoboHelp Server UpdateCommandStream XML External Entity Processing Information Disclosure Vulnerability
Vulnerability Description
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interaction.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
Adobe RoboHelp 安全漏洞
Vulnerability Description
Adobe RoboHelp是美国奥多比(Adobe)公司的一个应用软件。用于创作和发布帮助,策略和知识库内容的下一代软件。 Adobe RoboHelp 11.4 版本及之前版本存在安全漏洞,该漏洞源于存在 XML 外部实体不当引用(XXE)漏洞,该漏洞可能导致未经身份验证的攻击者泄露信息。
CVSS Information
N/A
Vulnerability Type
N/A