Bw Calendar Engine

bw-calendar-engine

Vendor: Apereo • 1 CVE

CVEs (1)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2018-1000836

1Apereo

1Bw Calendar Engine

Nov 21, 2024

Dec 20, 2018

N/A· v4

9.0 CRITICAL· v3

6.8 MEDIUM· v2

bw-calendar-engine version <= bw-calendar-engine-3.12.0 contains a XML External Entity (XXE) vulnerability in IscheduleClient XML Parser that can result in Disclosure of confidential data, denial of service, SSRF, port s...Show more