CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-21765

Electronic Delivery Check System (Doboku) Ver.18.1.0 and earlier, Electronic Delivery Check System (Dentsu) Ver.12.1.0 and earlier, Electronic Delivery Check System (Kikai) Ver.10.1.0 and earlier, and Electronic delivery item Inspection Support SystemVer.4.0.31 and earlier improperly restrict XML external entity references (XXE). By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.7%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2024-21765

Cals-Ed » Electronic Delivery Check System » Version: N/A

cpe:2.3:a:cals-ed:electronic_delivery_check_system:-
Cals-Ed » Electronic Delivery Check System » Version: 10.1.0

cpe:2.3:a:cals-ed:electronic_delivery_check_system:10.1.0
Cals-Ed » Electronic Delivery Check System » Version: 12.1.0

cpe:2.3:a:cals-ed:electronic_delivery_check_system:12.1.0
Cals-Ed » Electronic Delivery Check System » Version: 18.1.0

cpe:2.3:a:cals-ed:electronic_delivery_check_system:18.1.0
Cals-Ed » Electronic Delivery Item Inspection Support System » Version: N/A

cpe:2.3:a:cals-ed:electronic_delivery_item_inspection_support_system:-
Cals-Ed » Electronic Delivery Item Inspection Support System » Version: 4.0.31

cpe:2.3:a:cals-ed:electronic_delivery_item_inspection_support_system:4.0.31

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-21765

Products

Pricing

Contact Us