Vulnerabilities > CVE-2017-6895 - XXE vulnerability in USB Pratirodh Project USB Pratirodh
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Packetstorm
data source | https://packetstormsecurity.com/files/download/141652/usbpratirodh-xxe.txt |
id | PACKETSTORM:141652 |
last seen | 2017-03-17 |
published | 2017-03-15 |
reporter | Sachin Wagh |
source | https://packetstormsecurity.com/files/141652/USB-Pratirodh-XXE-Injection.html |
title | USB Pratirodh XXE Injection |
References
- http://packetstormsecurity.com/files/141652/USB-Pratirodh-XXE-Injection.html
- http://packetstormsecurity.com/files/141652/USB-Pratirodh-XXE-Injection.html
- http://seclists.org/fulldisclosure/2017/Mar/42
- http://seclists.org/fulldisclosure/2017/Mar/42
- http://www.securityfocus.com/bid/96936
- http://www.securityfocus.com/bid/96936
- https://secur1tyadvisory.wordpress.com/2017/03/15/usb-pratirodh-xml-external-entity-injection-vulnerability/
- https://secur1tyadvisory.wordpress.com/2017/03/15/usb-pratirodh-xml-external-entity-injection-vulnerability/