CVE-2021-20838

Summary

Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition by processing a specially crafted XML document.

Affected Software

VendorProductVersion RangeStatus
Antenna House, Inc.Office Server Document ConverterV7.2MR4 and earlier and V7.1MR7 and earlieraffected

Weaknesses

  • XML external entities (XXE)

ADP Enrichment

CVE Program Container

Additional References

References