VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Endress Hauser
>
Hart Comm DTM
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2015-09-28
CVE-2015-6463
CodeWrights HART Comm DTM components, as used with Endress+Hauser FieldCare, allow remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a longtag XML schema containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
low complexity
codewrights
endress-hauser
5.8
5.8