PT-2025-46664 · Solarwinds · N-Central
Published
2025-11-12
·
Updated
2026-04-14
·
CVE-2025-11700
CVSS v4.0
8.4
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:L/SA:L |
Name of the Vulnerable Software and Affected Versions
N-central versions prior to 2025.4
Description
N-central versions prior to 2025.4 are susceptible to an XML External Entities injection that could lead to information disclosure. This issue allows for the potential exposure of sensitive data.
Recommendations
Update N-central to version 2025.4 or later.
Fix
XXE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
N-Central