CVE-2022-21949

CVE-2022-21949

A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certain operations. This can be used to gain information from the server that can be abused to escalate to Admin privileges on OBS. This issue affects: SUSE Open Build Service Open Build Service versions prior to 2.10.13.

Source: CVE-2022-21949

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다