CVE-2025-11700

Summary

N-central versions < 2025.4 are vulnerable to multiple XML External Entities injection leading to information disclosure

Affected Software

VendorProductVersion RangeStatus
N-ableN-central0 < 2025.4affected

Weaknesses

  • CWE-611: CWE-611 Improper Restriction of XML External Entity Reference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References