CVE-2023-37200

CVSS V2 None CVSS V3 None

Description

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause loss of confidentiality when replacing a project file on the local filesystem and after manual restart of the server.

Overview

CVE ID
CVE-2023-37200

Assigner
schneider

Vulnerability Status
PUBLISHED

Published Version
2023-07-12T07:11:30.005Z

Last Modified Date
2023-07-12T07:11:30.005Z

Weakness Enumerations

CWE	URL
CWE-611	http://cwe.mitre.org/data/definitions/611.html

References

Reference URL	Reference Tags
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-192-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-192-02.pdf

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-37200
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37200

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 00:37:13				Added to TrackCVE