PT-2019-18775 · Adobe · Campaign Classic
Publicado
2019-07-18
·
Atualizado
2019-07-21
·
CVE-2019-7847
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Adobe Campaign Classic versions prior to 18.10.5-8984
Description
The issue is related to an Improper Restriction of XML External Entity Reference, which could lead to Arbitrary read access to the file system in the context of the current user.
Recommendations
For Adobe Campaign Classic versions prior to 18.10.5-8984, update to a version later than 18.10.5-8984 to resolve the issue.
Correção
XXE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Campaign Classic