Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An attacker with access to an HX 10.0.0 and previous versions, may send specially-crafted data to the HX console. The malicious detection would then trigger file parsing containing exponential entity expansions in the consumer process thus causing a Denial of Service.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
DTD中递归实体索引的不恰当限制(XML实体扩展)
Vulnerability Title
Trellix HX 安全漏洞
Vulnerability Description
Trellix HX是美国火眼(Trellix)公司的一款终端安全解决方案。 Trellix HX 10.0.0版本存在安全漏洞。攻击者利用该漏洞可以通过发送特制数据导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A