CVE-2024-4189
HIGH WAF: High
CVSS 8.0
Published: 2024-10-16
CWE-611 CWE-611
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
WAF Coverage Analysis
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| microfocus | application_automation_tools | up to 24.1.0 |
References
- portal.microfocus.com (Vendor Advisory)