CVE-2023-37233
HIGH WAF: High
CVSS 8.8
Published: 2024-09-10
CWE-611 CWE-611
Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.
WAF Coverage Analysis
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| loftware | spectrum | up to 4.6_hf14 |
References
- code-white.com (Not Applicable)
- code-white.com (Third Party Advisory)
- docs.loftware.com (Vendor Advisory)