CVE-2024-51770

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions: HPE AutoPass License Server (affected versions not specified)

Description: The issue is related to incorrect restriction of XML links to external objects in the HPE AutoPass License Server software. Exploitation of this issue may allow an attacker to access confidential information.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XXE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-611CWE-497

Related Identifiers

BDU:2024-10802

CVE-2024-51770

ZDI-24-1634

Affected Products

Hpe Autopass License Server

CVE-2024-51770

Weakness Enumeration

Related Identifiers

Affected Products

References · 10