CVE-2018-3881 - An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v24

CVE-2018-3881

Summary

An exploitable unauthenticated XML external injection vulnerability was identified in FocalScope v2416. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE, and potentially result in data compromise.

References

https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0559

Vulnerable Configurations

cpe:2.3:a:focalscope:focalscope:2416:*:*:*:*:*:*:*
cpe:2.3:a:focalscope:focalscope:2416:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 03-02-2023 - 13:56)
Impact:
Exploitability:

CWE

CWE-611

CAPEC

XML External Entities Blowup
This attack takes advantage of the entity replacement property of XML where the value of the replacement is a URI. A well-crafted XML document could have the entity refer to a URI that consumes a large amount of resources to create a denial of service condition. This can cause the system to either freeze, crash, or execute arbitrary code depending on the URI.

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

misc

https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0559

Last major update

03-02-2023 - 13:56

Published

01-08-2018 - 20:29

Last modified

03-02-2023 - 13:56