XXE in N/a

CVE-2024-22218

XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which could lead to various actions such as acces…

Vulnerability class: XXE (XML External Entity)

EPSS: 0.007 (49.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

  • N/a — versions n/a

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2024-22218?
CVE-2024-22218 is a high-severity vulnerability in N/a, classified under Improper Restriction of XML External Entity Reference (XXE). CVSS score: 8.8/10. Published 2024-08-15.
How severe is CVE-2024-22218?
High severity. CVSS v3 base score is 8.8 out of 10.