Medium severity5.9NVD Advisory· Published Apr 11, 2023· Updated Jun 17, 2026
CVE-2023-28828
CVE-2023-28828
Description
A vulnerability has been identified in Polarion ALM (All versions < V22R2). The application contains a XML External Entity Injection (XXE) vulnerability. This could allow an attacker to view files on the application server filesystem.
Affected products
2- Range: <V22R2
- Range: All versions < V22R2
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-632164.pdfnvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.