説明
CBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.
AI分析AIによる分析
影響を受ける製品
bruhn-newtechcbrn-analysis
参照
- https://zigrin.com/advisories/cbrn-analysis-external-xml-entity-injection/Third Party Advisory
- https://zigrin.com/advisories/cbrn-analysis-external-xml-entity-injection/Third Party Advisory