BI Web Services in SAS Web Infrastructure Platform before 9.4M6 allows XXE.
2019-01-17T01:29:00.327
2024-11-21T04:02:03.743
Modified
CVSSv3.0: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sas | web_infrastructure_platform | < 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | sas | web_infrastructure_platform | 9.4 | Yes |
| Application | hpe | hp-ux_ipfilter | - | No |
| Operating System | ibm | aix | - | No |
| Operating System | linux | linux_kernel | - | No |
| Operating System | microsoft | windows | - | No |
| Operating System | oracle | solaris | - | No |