IBM » License Metric Tool : Security Vulnerabilities, CVEs, Published In 2017 (Denial of service)
IBM BigFix Inventory v9 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources.
Max CVSS
8.1
EPSS Score
0.13%
Published
2017-02-01
Updated
2017-02-13
1 vulnerabilities found