CVE-2014-3066 Information

Share on:

Feb 14, 2021 cve

Description

IBM Tivoli Endpoint Manager 9.1 before 9.1.1088.0 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference related to an XML External Entity (XXE) issue.

Reference

http://secunia.com/advisories/58672 http://secunia.com/advisories/58906 http://www.securitytracker.com/id/1030508 http://www-01.ibm.com/support/docview.wss?uid=swg21673961 http://www-01.ibm.com/support/docview.wss?uid=swg21673967 https://exchange.xforce.ibmcloud.com/vulnerabilities/93630