PT-2019-18775 · Adobe · Campaign Classic

Published

2019-07-18

Updated

2019-07-21

CVE-2019-7847

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Campaign Classic versions prior to 18.10.5-8984

Description The issue is related to an Improper Restriction of XML External Entity Reference, which could lead to Arbitrary read access to the file system in the context of the current user.

Recommendations For Adobe Campaign Classic versions prior to 18.10.5-8984, update to a version later than 18.10.5-8984 to resolve the issue.

Fix

XXE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-611

Related Identifiers

CVE-2019-7847

Affected Products

Campaign Classic

PT-2019-18775 · Adobe · Campaign Classic

CVE-2019-7847

Weakness Enumeration

Related Identifiers

Affected Products

References · 3