Axiossystems

axiossystems

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Assyst

assyst

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-30137 1Axiossystems 1Assyst Nov 21, 2024 Sep 15, 2021 N/A· v4 8.2 HIGH· v3 6.4 MEDIUM· v2 Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through several access points...Show more Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through several access points.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-30137

1Axiossystems

1Assyst

Nov 21, 2024

Sep 15, 2021

N/A· v4

8.2 HIGH· v3

6.4 MEDIUM· v2

Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through several access points...Show more