CVE-2015-8698
29.06.2016, 01:59
CA Release Automation (formerly LISA Release Automation) 5.0.2 before 5.0.2-227, 5.5.1 before 5.5.1-1616, 5.5.2 before 5.5.2-434, and 6.1.0 before 6.1.0-1026 allows remote attackers to read arbitrary files or cause a denial of service via a request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.Enginsight
Vendor | Product | Version |
---|---|---|
broadcom | release_automation | 5.0.2 ≤ 𝑥 < 5.0.2-227 |
broadcom | release_automation | 5.5.1 ≤ 𝑥 < 5.5.1-1616 |
broadcom | release_automation | 5.5.2 ≤ 𝑥 < 5.5.2-434 |
broadcom | release_automation | 6.1.0 ≤ 𝑥 < 6.1.0-1026 |
𝑥
= Vulnerable software versions
References