1 results (0.006 seconds)
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 2
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 2CVE-2017-7457 – Moxa MX AOPC-Server 1.5 - XML External Entity Injection
https://notcve.org/view.php?id=CVE-2017-7457
XML External Entity via ".AOP" files used by Moxa MX-AOPC Server 1.5 result in remote file disclosure. XML External Entity a través de los archivos ".AOP" utilizados por Moxa MX-AOPC Server 1.5 resultan en la divulgación remota de archivos. Moxa MX-AOPC UA server version 1.5 suffers from an XML external entity injection vulnerability. • https://www.exploit-db.com/exploits/41852 http://hyp3rlinx.altervista.org/advisories/MOXA-MX-AOPC-SERVER-v1.5-XML-EXTERNAL-ENTITY.txt http://seclists.org/fulldisclosure/2017/Apr/51 • CWE-611: Improper Restriction of XML External Entity Reference •