Vulnerabilities

CVE-2022-2330

by Fred · 30/08/2022

Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 and 11.6.600 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldn’t usually have access to via a carefully constructed XML file, which the DLP Agent doesn’t parse correctly.

Date published : 2022-08-30

https://kcm.trellix.com/corporate/index?page=content&id=SB10386

Similar

Tags: Cybersecurity Alert