Vulnerabilities > CVE-2022-45194 - XXE vulnerability in Bruhn-Newtech Cbrn-Analysis

047910
CVSS 4.7 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
bruhn-newtech
CWE-611
NVD
Published: 2022-11-12
Updated: 2022-11-16

Summary

CBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.

Vulnerable Configurations

Part Description Count
Application
Bruhn-Newtech
1

Common Weakness Enumeration (CWE)

References