CVE-2016-1343 in Information Serverinfo

Summary

The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuy39059.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/04/2016

Disclosure

04/30/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-611 (Confirmed)

CVSS

7.6

EPSS

0.00593

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1343
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1343
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1343/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!