VYPR
Unrated severityNVD Advisory· Published Mar 23, 2020· Updated Aug 4, 2024

CVE-2020-7480

CVE-2020-7480

Description

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewable when an attacker interferes with an application's processing of XML data.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.