Vulnerabilities > CVE-2017-1000496 - XXE vulnerability in Commsy 9.0.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Commsy version 9.0.0 is vulnerable to XXE attacks in the configuration import functionality resulting in denial of service and possibly remote execution of code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |