CVE-2023-46265 Information

Description

An unauthenticated could abuse a XXE vulnerability in the Smart Device Server to leak data or perform a Server-Side Request Forgery (SSRF).

Reference

https://download.wavelink.com/Files/avalanche_v6.4.2_release_notes.txt