Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-2414

Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.

  • Published: Jul 29, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-2414
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
dogtagpki / dogtagpki 10.5.18 10.5.18.x
dogtagpki / dogtagpki 10.7.4 10.7.4.x
dogtagpki / dogtagpki 10.8.3 10.8.3.x
dogtagpki / dogtagpki 10.11.2 10.11.2.x
dogtagpki / dogtagpki 10.12.4 10.12.4.x
dogtagpki / dogtagpki 11.0.5 11.0.5.x
dogtagpki / dogtagpki 11.1.0 11.1.0.x