CVE-2022-25628 Information

Description

An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4

Reference

https://support.broadcom.com/external/content/SecurityAdvisories/0/21136