CVE-2022-1704 Information

Description

Due to an XML external entity reference the software parses XML in the backup/restore functionality without XML security flags which may lead to a XXE attack while restoring the backup.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-22-207-01