Vulnerabilities > CVE-2018-10600 - XXE vulnerability in Selinc Acselerator Architect 2.2.24.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SEL AcSELerator Architect version 2.2.24.0 and prior allows unsanitized input to be passed to the XML parser, which may allow disclosure and retrieval of arbitrary data, arbitrary code execution (in certain situations on specific platforms), and denial of service attacks.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |