Vulnerabilities > CVE-2021-42776 - XXE vulnerability in Cloverdx

047910
CVSS 7.7 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
cloverdx
CWE-611
NVD
Published: 2021-12-01
Updated: 2021-12-03

Summary

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import.

Vulnerable Configurations

Part Description Count
Application
Cloverdx
31

Common Weakness Enumeration (CWE)

References