CNNVD-202508-036 Information

CNNVD ID

CNNVD-202508-036

Related CVE

CVE-2019-19144

• CNNVD Published: 2025-08-01

Description (Chinese)

Quantum DXi6702是美国Quantum公司的一款磁盘备份与重复数据删除设备。 Quantum DXi6702 2.3.0.3版本存在安全漏洞，该漏洞源于XML外部实体注入问题，可能导致信息泄露。

Description (English)

Quantum DXi6702 is a back-up and duplicate data removal device for the United States company Quantum. Quantum DXi6702 2.3.0.3 has a security loophole, which stems from an injection problem with an external XML entity and could lead to a leak of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Quantum

Published

2025-08-01

Last Modified

2026-02-24

References

https://github.com/atredispartners/advisories/blob/master/ATREDIS-2019-0004.md https://www.quantum.com/products/disk-basedbackup/dxi6700/index.aspx https://access.redhat.com/security/cve/cve-2019-19144