Dell EMC OpenManage Server Administrator (OMSA) versions before 9.1.0.3 and before 9.2.0.4 contain an XML external entity (XXE) injection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to read arbitrary server system files by supplying specially crafted document type definitions (DTDs) in an XML request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dell emc openmanage server administrator 9.2.0.1 |
||
dell emc openmanage server administrator 9.1.0.2 |
||
dell emc openmanage server administrator 9.2.0.2 |
||
dell emc openmanage server administrator 9.1 |
||
dell emc openmanage server administrator 9.2 |
||
dell emc openmanage server administrator 9.1.0.1 |