XML External Entity (XXE) Vulnerability in SAP Business Process Automation (BPA) By Redwood

XML External Entity (XXE) Vulnerability in SAP Business Process Automation (BPA) By Redwood

CVE-2018-2401 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SAP Business Process Automation (BPA) By Redwood does not sufficiently validate an XML document accepted from an untrusted source resulting in an XML External Entity (XXE) vulnerability.

Learn more about our External Network Penetration Testing.