CVE-2014-4669

Name of the Vulnerable Software and Affected Versions HP Enterprise Maps version 1.00

Description The issue allows remote authenticated users to read arbitrary files via a WSDL document containing an XML external entity declaration in conjunction with an entity reference within a GetQuote operation, related to an XML External Entity (XXE) issue.

Recommendations For HP Enterprise Maps version 1.00, consider disabling the GetQuote operation until a patch is available to prevent exploitation of the XML External Entity issue. Restrict access to sensitive files and directories to minimize the risk of unauthorized access.