Vulnerability Details CVE-2018-6486
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.1%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 7.5
References
Products affected by CVE-2018-6486
-
cpe:2.3:a:microfocus:fortify_audit_workbench:16.10
-
cpe:2.3:a:microfocus:fortify_audit_workbench:16.20
-
cpe:2.3:a:microfocus:fortify_audit_workbench:17.10
-
cpe:2.3:a:microfocus:fortify_software_security_center:16.10
-
cpe:2.3:a:microfocus:fortify_software_security_center:16.20
-
cpe:2.3:a:microfocus:fortify_software_security_center:17.10