Vulnerabilities > CVE-2021-42776 - XXE vulnerability in Cloverdx

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
COMPLETE
Integrity impact
NONE
Availability impact
NONE
network
low complexity
cloverdx
CWE-611
NVD
Published: 2021-12-01
Updated: 2021-12-03

Summary

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import.

Vulnerable Configurations

Part Description Count
Application
Cloverdx
31

Common Weakness Enumeration (CWE)

References