CVE-2016-3255 in Windowsinformação

Sumário

de MITRE

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka ".NET Information Disclosure Vulnerability."

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

15/03/2016

Divulgação

12/07/2016

Moderação

aceite

Entrada

VDB-89051

CPE

pronto

CWE

CWE-200 (confirmado)

CVSS

7.5 (NVD)

EPSS

0.29474

KEV

não

Atividades

muito baixo

Sector

Chemical, Education, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-3255
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-3255
CVE Details	https://www.cvedetails.com/cve/CVE-2016-3255/

◂ Voltar Visão Geral Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!