Vulnerability Details CVE-2023-43067
Dell Unity prior to 5.3 contains an XML External Entity injection vulnerability. An XXE attack could potentially exploit this vulnerability disclosing local files in the file system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.0%
CVSS Severity
CVSS v3 Score 4.9
References
Products affected by CVE-2023-43067
-
cpe:2.3:a:dell:unity_operating_environment:-
-
cpe:2.3:a:dell:unity_operating_environment:5.0.7.0.5.008
-
cpe:2.3:a:dell:unity_operating_environment:5.2.0.0.5.173
-
cpe:2.3:a:dell:unity_xt_operating_environment:-
-
cpe:2.3:a:dell:unity_xt_operating_environment:5.0.7.0.5.008
-
cpe:2.3:a:dell:unity_xt_operating_environment:5.2.0.0.5.173
-
cpe:2.3:a:dell:unityvsa_operating_environment:-
-
cpe:2.3:a:dell:unityvsa_operating_environment:5.0.7.0.5.008
-
cpe:2.3:a:dell:unityvsa_operating_environment:5.2.0.0.5.173