CVE-2018-10613

Summary

Multiple variants of XML External Entity (XXE) attacks may be used to exfiltrate data from the host Windows platform in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior.

Affected Software

VendorProductVersion RangeStatus
GEMDS PulseNET and MDS PulseNET EnterpriseVersion 3.2.1 and prioraffected

Weaknesses

  • CWE-611: XXE CWE-611

ADP Enrichment

CVE Program Container

Additional References

References