CVE-2023-22274

Name of the Vulnerable Software and Affected Versions Adobe RoboHelp Server versions 11.4 and earlier

Description The issue is related to an Improper Restriction of XML External Entity Reference ('XXE') vulnerability. This could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interaction. The vulnerability may allow a remote attacker to gain unauthorized access to protected information or cause a denial of service.

Recommendations For Adobe RoboHelp Server versions 11.4 and earlier, update to a version later than 11.4 to resolve the issue. As a temporary workaround, consider restricting access to XML external entities until a patch is available.