Description

XML External Entity vulnerability in Micro Focus Verastream Host Integrator, affecting version 7.8 Update 1 and earlier versions. The vulnerability could allow the control of web browser and hijacking user sessions.

Related CPE's

a

microfocus

verastream_host_integrator

3

References

https://support.microfocus.com/kb/doc.php?id=7025169

https://support.microfocus.com/kb/doc.php?id=7025169

Weaknesses

[email protected]

Primary
CWE-611

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L

7.6 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-07-22T10:15:07.860Z

4 years ago

Last modified

2024-11-21T04:50:16.590Z

1 year ago