CVE-2018-6489

XML External Entity (XXE) vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability can be exploited to allow XML External Entity (XXE)

Published : 2018-02-22 22:29 Updated : 2018-03-20 19:17

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Microfocus Project And Portfolio Management Center 9.32 cpe:/a:microfocus:project_and_portfolio_management_center:9.32
  1. Microfocus (1) Search CVE
    1. Project And Portfolio Management Center (1) Search CVE
      1. 9.32

CWE

ID Name Description Links
CWE-611 Improper Restriction of XML External Entity Reference ('XXE') The software processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output. CVE

History of changes

Date Event
2018-03-20 19:17
2018-02-22 22:29

New CVE