XML External Entity (XXE) Vulnerability in SAP Business Process Automation (BPA) By Redwood
CVE-2018-2401 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:P/A:P
SAP Business Process Automation (BPA) By Redwood does not sufficiently validate an XML document accepted from an untrusted source resulting in an XML External Entity (XXE) vulnerability.
Learn more about our External Network Penetration Testing.