Skip to main content

Filenet Business Process Framework

1 CVEs product

Monthly

CVE-2013-5452 LOW Monitor

IBM FileNet Business Process Framework 4.1.0 allows remote authenticated users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure XXE IBM Filenet Business Process Framework
NVD
CVSS 2.0
3.5
EPSS
0.3%
EPSS 0% CVSS 3.5
LOW Monitor

IBM FileNet Business Process Framework 4.1.0 allows remote authenticated users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure XXE IBM +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy