VYPR
Critical severity9.8NVD Advisory· Published Apr 6, 2020· Updated Jun 17, 2026

CVE-2020-11586

CVE-2020-11586

Description

An XXE issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an API request that contains malicious XML DTD data.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.