XML External Entity (XXE) Vulnerability in Intel Quartus Prime Editions

XML External Entity (XXE) Vulnerability in Intel Quartus Prime Editions

CVE-2020-24454 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Improper Restriction of XML External Entity Reference in subsystem forIntel(R) Quartus(R) Prime Pro Edition before version 20.3 and Intel(R) Quartus(R) Prime Standard Edition before version 20.2 may allow unauthenticated user to potentially enable information disclosure via network access.

Learn more about our External Network Penetration Testing.