CVE-2024-53674

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions HPE Insight Remote Support (affected versions not specified)

Description A vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases due to an XML external entity injection (XXE) issue. This could potentially lead to information disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XXE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-611CWE-91

Related Identifiers

CVE-2024-53674

ZDI-24-1637

Affected Products

Hpe Insight Remote Support

CVE-2024-53674

Weakness Enumeration

Related Identifiers

Affected Products

References · 8