CVE-2023-29498
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Summary
Improper restriction of XML external entity reference (XXE) vulnerability exists in FRENIC RHC Loader v1.1.0.3 and earlier. If a user opens a specially crafted project file, sensitive information on the system where the affected product is installed may be disclosed.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| FUJI ELECTRIC CO., LTD. | FRENIC RHC Loader | v1.1.0.3 and earlier | affected |
Weaknesses
- Improper restriction of XML external entity reference (XXE)
ADP Enrichment
CVE Program Container
Additional References
- https://felib.fujielectric.co.jp/download/details.htm?dataid=45829407&site=global&lang=en
- https://jvn.jp/en/vu/JVNVU97809354/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://felib.fujielectric.co.jp/download/details.htm?dataid=45829407&site=global&lang=en
- https://jvn.jp/en/vu/JVNVU97809354/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.