How severe is CVE-2017-6323?

This vulnerability has a severity rating of HIGH with a CVSS score of 8 out of 10.

What type of vulnerability is CVE-2017-6323?

This is classified as CWE-611, which is a common weakness in software security.

CVE-2017-6323 - HIGH Severity | CVSS 8

Vulnerability Description

The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0_POST_HF6, and ITMS 7.6_POST_HF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data, denial of service, server side request forgery, port scanning from the perspective of the machine where the parser is located, and other system impacts.

Related Vulnerabilities

CVE-2019-18943

HIGH

CVSS:8.0(High)

Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.

CWE-6112019

CVE-2024-4184

MEDIUM

CVSS:8.0(High)

Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and b...

CWE-6112024

CVE-2024-4189

MEDIUM

CVSS:8.0(High)

CWE-6112024

CVE-2024-4690

MEDIUM

CVSS:8.0(High)

CWE-6112024

CVE-2016-3033

HIGH

CVSS:8.1(High)

IBM AppScan Source 8.7 through 9.0.3.3 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity dec...

CWE-6112016

CVE-2016-3055

HIGH

CVSS:8.1(High)

IBM FileNet Workplace 4.0.2 before 4.0.2.14 LA012 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external...

CWE-6112016