CVE-2024-55969 | Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54 docx Document xml external entity reference

Inserito da Angelo Barbosa | Dic 15, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54. This issue affects some unknown processing of the component docx Document Handler. The manipulation leads to xml external entity reference.

The identification of this vulnerability is CVE-2024-55969. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-55969 | Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54 docx Document xml external entity reference

Post correlati

CVE-2024-10742 | code-projects Wazifa System 1.0 /controllers/control.php to sql injection

CVE-2018-9391 | Google Android gpshal_wor update_gps_sv/output_vzw_debug out-of-bounds write

CVE-2024-9040 | code-projects Blood Bank Management System 1.0 Password cleartext storage in a file or on disk

CVE-2024-5312 | PHP Server Monitor 3.2.0 index.php cross site scripting