CNNVD-202512-4258 Information

CNNVD ID

CNNVD-202512-4258

Related CVE

CVE-2019-25253

• CNNVD Published: 2025-12-24

Description (Chinese)

KYOCERA Net Admin是美国KYOCERA公司的一个企业级设备管理平台。 KYOCERA Net Admin 3.4.0906版本存在安全漏洞，该漏洞源于Multi-Set Template Editor对XML文件处理不当，可能导致XML外部实体注入攻击。

Description (English)

KYOCERA Net Admin is an enterprise-level equipment management platform for KYOCERA in the United States. The security loophole in version 3.4.0906 of KYOCERA Net Admin stems from the mishandling of XML files by Multi-Set Template Editor, which may result in an injection attack by an outside XML entity.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

京瓷

Published

2025-12-24

Last Modified

2026-02-24

References

https://global.kyocera.com https://www.exploit-db.com/exploits/44430 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5459.php