CVE-2021-43990

Summary

The affected product is vulnerable to a network-based attack by threat actors supplying a crafted, malicious XML payload designed to trigger an external entity reference call.

Affected Software

VendorProductVersion RangeStatus
FANUCROBOGUIDEAll < v9.40083.00.05 (Rev T)affected

Weaknesses

  • CWE-611: CWE-611 Improper Restriction of XML External Entity Reference ('XXE')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References