Vulnerability CVE-2020-7032
Published: 2020-11-13

Description:
An XML external entity (XXE) vulnerability in Avaya WebLM admin interface allows authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request. Affected versions of Avaya WebLM include: 7.0 through 7.1.3.6 and 8.0 through 8.1.2.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Avaya Web License Manager XML Injection
M. Koplin
18.11.2020

 References:
https://downloads.avaya.com/css/P8/documents/101072249
Copyright 2024, cxsecurity.com

 

Back to Top