XML External Entity Injection Vulnerability in Dell Unity

XML External Entity Injection Vulnerability in Dell Unity

CVE-2023-43067 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Dell Unity prior to 5.3 contains an XML External Entity injection vulnerability. An XXE attack could potentially exploit this vulnerability disclosing local files in the file system.

Learn more about our External Network Penetration Testing.