CVE-2024-49704 | Siemens COMOS Generic Data Mapper xml external entity reference (ssa-701627)

Inserito da Angelo Barbosa | Dic 10, 2024 | CVE

A vulnerability classified as critical was found in Siemens COMOS. This vulnerability affects unknown code of the component Generic Data Mapper/the Engineering Adapter/the Engineering Interface. The manipulation leads to xml external entity reference.

This vulnerability was named CVE-2024-49704. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49704 | Siemens COMOS Generic Data Mapper xml external entity reference (ssa-701627)

Post correlati

CVE-2024-42471 | actions toolkit up to 2.1.6 path traversal

CVE-2024-0944 | Totolink T8 4.1.5cu.833_20220905 /cgi-bin/cstecgi.cgi session expiration

CVE-2023-49572 | Flexense VX Search Enterprise 10.2.14 /setup_odbc odbc_data_source/odbc_user/odbc_password cross site scripting

CVE-2024-29830 | Ivanti Endpoint Manager GetLogFileRulesNameUniqueSQL sql injection