RSS   Vulnerabilities for 'Autopsy'   RSS

2018-12-20
 
CVE-2018-1000838

CWE-611
 

 
autopsy version <= 4.9.0 contains a XML External Entity (XXE) vulnerability in CaseMetadata XML Parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via Specially crafted CaseMetadata.

 

 >>> Vendor: Sleuthkit 2 Products
The sleuth kit
Autopsy


Copyright 2024, cxsecurity.com

 

Back to Top