Unrated severityNVD Advisory· Published Mar 23, 2020· Updated Aug 4, 2024
CVE-2020-7480
CVE-2020-7480
Description
A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewable when an attacker interferes with an application's processing of XML data.
Affected products
2- Andover/Continuumdescription
- Range: All versions
Patches
Vulnerability mechanics
References
1- www.se.com/ww/en/download/document/SEVD-2020-070-04/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.