CVE-2014-5452 in C-CDAthông tin

Tóm tắt

Bởi MITRE

CDA.xsl in HL7 C-CDA 1.1 and earlier does not anticipate the possibility of invalid C-CDA documents with crafted XML attributes, which allows remote attackers to conduct XSS attacks via a document containing a table that is improperly handled during unrestricted xsl:copy operations.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Đặt trước

25/08/2014

Tiết lộ

02/09/2014

Kiểm duyệt

được chấp nhận

mục

VDB-70789

EPSS

0.02050

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!