Vulnerability CVE-2022-34348


Published: 2022-09-23

Description:
IBM Sterling Partner Engagement Manager 6.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 230017.

 References:
https://www.ibm.com/support/pages/node/6695927
https://exchange.xforce.ibmcloud.com/vulnerabilities/230017

Copyright 2022, cxsecurity.com

 

Back to Top