XXE Vulnerability in SUSE Linux SMT Allows Remote Data Reading and DoS

XXE Vulnerability in SUSE Linux SMT Allows Remote Data Reading and DoS

CVE-2018-12471 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:P

A External Entity Reference ('XXE') vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.