CVE-2022-47873

Name of the Vulnerable Software and Affected Versions Netcad KEOS version 1.0

Description The issue is related to an XML External Entity (XXE) vulnerability, which can result in Server-Side Request Forgery (SSRF) with XXE. This allows for remote exploitation.

Recommendations For Netcad KEOS version 1.0, as a temporary workaround, consider disabling XML External Entity processing until a patch is available. Restrict access to sensitive areas of the application to minimize the risk of exploitation.