When opening a malicious solution file provided by an attacker, the application suffers from an XML external entity vulnerability due to an unsafe call within a dynamic link library file. An attacker could exploit this to pass data from local files to a remote web server, leading to a loss of confidentiality.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rockwellautomation connected components workbench |
||
rockwellautomation isagraf |
||
rockwellautomation safety instrumented systems workstation |