← Voltar para CVEs
CVE-2018-10600
N/ADescricao
SEL AcSELerator Architect version 2.2.24.0 and prior allows unsanitized input to be passed to the XML parser, which may allow disclosure and retrieval of arbitrary data, arbitrary code execution (in certain situations on specific platforms), and denial of service attacks.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado7/24/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
selinc:acselerator_architect
Fraquezas (CWE)
CWE-611CWE-611
Referencias
https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02(ics-cert@hq.dhs.gov)
https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.