Vulnerability Details CVE-2023-42132
FD Application Apr. 2022 Edition (Version 9.01) and earlier improperly restricts XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.2%
CVSS Severity
CVSS v3 Score 5.5
References
Products affected by CVE-2023-42132
-
cpe:2.3:a:mhlw:fd_application:-
-
cpe:2.3:a:mhlw:fd_application:9.01