The XML document processed in the GMS ECM URL endpoint is vulnerable to XML external entity (XXE) injection, potentially resulting in the disclosure of sensitive information.
This issue affects GMS: 9.3.4 and earlier versions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: sonicwall
Published: 2024-05-01T18:12:53.853Z
Updated: 2024-08-02T01:03:51.475Z
Reserved: 2024-03-14T03:29:41.180Z
Link: CVE-2024-29010
Vulnrichment
Updated: 2024-08-02T01:03:51.475Z
NVD
Status : Awaiting Analysis
Published: 2024-05-01T18:15:17.873
Modified: 2024-11-21T09:07:22.030
Link: CVE-2024-29010
Redhat
No data.