Description

XML External Entity vulnerability in Micro Focus Verastream Host Integrator, affecting version 7.8 Update 1 and earlier versions. The vulnerability could allow the control of web browser and hijacking user sessions.

Related CPE's

a

microfocus

verastream_host_integrator

3

References

https://support.microfocus.com/kb/doc.php?id=7025169

Weaknesses

[email protected]

Primary
CWE-611

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L

7.6 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-07-22T12:15:07.860

3 years ago

Last modified

2023-11-07T03:30:18.953

1 year ago