| ID | CVE-2020-12642 | ||||||
| Sažetak | An issue was discovered in service-api before 4.3.12 and 5.x before 5.1.1 for Report Portal. It allows XXE, with resultant secrets disclosure and SSRF, via JUnit XML launch import. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:L/Au:N/C:P/I:N/A:N | ||||||
| Zadnje važnije ažuriranje | 07-05-2020 - 16:48 | ||||||
| Objavljeno | 04-05-2020 - 16:15 |
