CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-6489
https://notcve.org/view.php?id=CVE-2018-6489
XML External Entity (XXE) vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability can be exploited to allow XML External Entity (XXE) Vulnerabilidad XEE (XML External Entity) en Micro Focus Project and Portfolio Management Center 9.32. Esta vulnerabilidad puede ser explotada para permitir XEE (XML External Entity). • https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03014426 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2016-4370
https://notcve.org/view.php?id=CVE-2016-4370
HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x before 9.32.0002 allows remote authenticated users to execute arbitrary commands or obtain sensitive information via unspecified vectors. HPE Project and Portfolio Management Center (PPM) 9.2x y 9.3x en versiones anteriores a 9.32.0002 permite a usuarios remotos autenticados ejecutar comandos arbitrarios u obtener información sensible a través de vectores no especificados. • https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05167126 •