XML External Entity (XXE) Vulnerability in Runelite Parent 1.4.23: Risks and Consequences

XML External Entity (XXE) Vulnerability in Runelite Parent 1.4.23: Risks and Consequences

CVE-2018-1000834 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

runelite version <= runelite-parent-1.4.23 contains a XML External Entity (XXE) vulnerability in Man in the middle runscape services call that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.

Learn more about our External Network Penetration Testing.