CA Cloud Service Management (CSM) before Summer 2014 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-11-04T20:00:00
Updated: 2017-09-07T15:57:01
Reserved: 2014-10-24T00:00:00
Link: CVE-2014-8474
JSON object: View
NVD Information
Status : Modified
Published: 2014-11-04T20:55:04.233
Modified: 2017-09-08T01:29:23.997
Link: CVE-2014-8474
JSON object: View
Redhat Information
No data.
CWE