CVE-2024-12476

The Web Designer configuration tool is affected by an Improper Restriction of XML External Entity Reference issue, which could lead to information disclosure, impact workstation integrity, and potentially allow remote code execution on the compromised computer. This occurs when a specifically crafted XML file is imported into the tool. An exploit for this issue is available. The vulnerable software is Web Designer, but the specific versions that are vulnerable are not provided in the given information. However, it's clear that the issue poses a significant risk, including potential remote code execution, and thus should be addressed promptly. #WebDesigner #XMLExternalEntity #InformationDisclosure #RemoteCodeExecution #Cybersecurity #CWE611