How severe is CVE-2025-56424?

CVE-2025-56424 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-56424

Name: e-invoice_pro
Author: insiders-technologies

7.5HIGH

An issue in Insiders Technologies GmbH e-invoice pro before release 1 Service Pack 2 allows a remote attacker to cause a denial of service via a crafted script

发布于: 1/8/2026更新于: 1/12/2026

描述

An issue in Insiders Technologies GmbH e-invoice pro before release 1 Service Pack 2 allows a remote attacker to cause a denial of service via a crafted script

AI分析AI驱动

受影响产品

insiders-technologiese-invoice_pro

1.0

参考资料

https://insiders-technologies.com/en/e-invoice/
Product
https://mind-bytes.de/xml-external-entity-xxe-injection-in-e-invoice-pro-cve-2025-56424/
ExploitThird Party Advisory