High severity7.3NVD Advisory· Published Aug 31, 2017· Updated Jun 17, 2026
CVE-2016-5795
CVE-2016-5795
Description
An XXE issue was discovered in Automated Logic Corporation (ALC) Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker could enter malicious input to WebCTRL, i-Vu, or SiteScan Web through a weakly configured XML parser causing the application to execute arbitrary code or disclose file contents from a server or connected network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:automatedlogic:sitescan_web:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:automatedlogic:sitescan_web:*:*:*:*:*:*:*:*range: <=6.5
- (no CPE)range: <=6.5
- Range: <=6.5
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/100558nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSA-17-150-01nvdMitigationThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.