CVE-2022-45194
3.8LOWCBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.
Published: 11/12/2022Updated: 5/1/2025
Description
CBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.
AI AnalysisPowered by AI
Affected Products
bruhn-newtechcbrn-analysis
References
- https://zigrin.com/advisories/cbrn-analysis-external-xml-entity-injection/Third Party Advisory
- https://zigrin.com/advisories/cbrn-analysis-external-xml-entity-injection/Third Party Advisory