XML External Entity Injection (XXE) Vulnerability in ENOVIA Live Collaboration V6R2013xE Allows Server File Read Access

XML External Entity Injection (XXE) Vulnerability in ENOVIA Live Collaboration V6R2013xE Allows Server File Read Access

CVE-2023-1288 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An XML External Entity injection (XXE) vulnerability in ENOVIA Live Collaboration V6R2013xE allows an attacker to read local files on the server.

Learn more about our Cis Benchmark Audit For Server Software.