CVE-2024-53675

High

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in…

hpe·CWE-91·Published 2024-11-26

CVSS

7.5

EPSS

0.84

KEV

Exploits

cve.orgen

147 chars

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.

NVDen

147 chars

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.

Una vulnerabilidad de inyección de entidad externa XML (XXE) en HPE Insight Remote Support puede permitir que los usuarios remotos divulguen información en ciertos casos.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	cve.org	7.3	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
3.1	Secondary	NVD	7.3	3.9	3.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L