Vulnerabilities > CVE-2020-15303 - XML Entity Expansion vulnerability in Infoblox Nios

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
infoblox
CWE-776
NVD
Published: 2021-06-28
Updated: 2021-07-02

Summary

Infoblox NIOS before 8.5.2 allows entity expansion during an XML upload operation, a related issue to CVE-2003-1564.

Vulnerable Configurations

Part Description Count
OS
Infoblox
5

Common Weakness Enumeration (CWE)

References