Unrated severityNVD Advisory· Published Oct 7, 2021· Updated Aug 4, 2024
CVE-2021-41770
CVE-2021-41770
Description
Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ping Identity/PingFederatedescription
- Range: <10.3.1
Patches
Vulnerability mechanics
References
2- docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.htmlmitrex_refsource_MISC
- www.pingidentity.com/en/resources/downloads/pingfederate.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.