Vulnerabilities > CVE-2019-5918 - XXE vulnerability in Nablarch Project Nablarch 5/5U1/5U13

047910
CVSS 9.1 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
nablarch-project
CWE-611
critical
NVD
Published: 2019-03-12
Updated: 2019-03-13

Summary

Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to conduct XML External Entity (XXE) attacks via unspecified vectors.

Vulnerable Configurations

Part Description Count
Application
Nablarch_Project
3

Common Weakness Enumeration (CWE)

References