Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-43624

Published: 23/10/2023 Updated: 01/11/2023
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Cx-designer

Vulnerability Summary

CX-Designer Ver.3.740 and previous versions (included in CX-One CXONE-AL[][]D-V4) contains an improper restriction of XML external entity reference (XXE) vulnerability. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Designer is installed may be disclosed.

Vulnerable Product Search on Vulmon Subscribe to Product

omrom cx-designer

References

CWE-611https://jvn.jp/en/vu/JVNVU98683567/https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-011_en.pdfhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook