Vulnerabilities > Obdasystems
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-21 | CVE-2021-40510 | XXE vulnerability in Obdasystems Mastro 1.0 XML eXternal Entity (XXE) in OBDA systems’ Mastro 1.0 allows remote attackers to read system files via custom DTDs. | 7.5 |
| 2022-06-21 | CVE-2021-40511 | XML Entity Expansion vulnerability in Obdasystems Mastro 1.0 OBDA systems’ Mastro 1.0 is vulnerable to XML Entity Expansion (aka “billion laughs”) attack allowing denial of service. | 7.5 |