CVE-2018-17912

Summary

An XXE vulnerability exists in CASE Suite Versions 3.10 and prior when processing parameter entities, which may allow remote file disclosure.

Affected Software

VendorProductVersion RangeStatus
unknownCASE SuiteVersions 3.10 and prioraffected

Weaknesses

  • CWE-611: IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCE ('XXE') CWE-611

ADP Enrichment

CVE Program Container

Additional References

References