CVE-2024-4184 | OpenText Application Automation Tools Plugin up to 24.1.0 on Jenkins XML File XpathReader.java xml external entity reference

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability has been found in OpenText Application Automation Tools Plugin up to 24.1.0 on Jenkins and classified as problematic. This vulnerability affects unknown code of the file XpathReader.java of the component XML File Handler. The manipulation leads to xml external entity reference.

This vulnerability was named CVE-2024-4184. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4184 | OpenText Application Automation Tools Plugin up to 24.1.0 on Jenkins XML File XpathReader.java xml external entity reference

Post correlati

CVE-2023-37934 | Fortinet FortiPAM up to 1.0.3 HTTP Request allocation of resources (FG-IR-23-226)

CVE-2023-28687 | perfectwpthemes Glaze Blog Lite on WordPress cross site scripting

CVE-2024-35684 | 10up ElasticPress Plugin up to 5.1.0 on WordPress cross-site request forgery

CVE-2023-6309 | moses-smt mosesdecoder up to 4.0 trans_result.php input1 os command injection