Vulnerabilities > CVE-2021-22523 - XXE vulnerability in Microfocus Verastream Host Integrator

047910
CVSS 7.6 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
LOW
Availability impact
LOW
network
low complexity
microfocus
CWE-611

Summary

XML External Entity vulnerability in Micro Focus Verastream Host Integrator, affecting version 7.8 Update 1 and earlier versions. The vulnerability could allow the control of web browser and hijacking user sessions.