An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
History

Thu, 12 Dec 2024 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-611

Wed, 27 Nov 2024 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Hpe
Hpe insight Remote Support
CPEs cpe:2.3:a:hpe:insight_remote_support:*:*:*:*:*:*:*:*
Vendors & Products Hpe
Hpe insight Remote Support
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 26 Nov 2024 22:15:00 +0000

Type Values Removed Values Added
Description An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
Weaknesses CWE-91
References
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: hpe

Published: 2024-11-26T22:01:12.616Z

Updated: 2024-11-27T11:58:39.036Z

Reserved: 2024-11-21T16:51:49.639Z

Link: CVE-2024-53675

cve-icon Vulnrichment

Updated: 2024-11-27T11:58:23.942Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-26T22:15:18.990

Modified: 2024-12-12T19:48:48.443

Link: CVE-2024-53675

cve-icon Redhat

No data.