Obdasystems: >> Mastro >> 1.0 Security Vulnerabilities
XML eXternal Entity (XXE) in OBDA systems’ Mastro 1.0 allows remote attackers to read system files via custom DTDs.
CVSS Score
7.5
EPSS Score
0.007
Published
2022-06-21
OBDA systems’ Mastro 1.0 is vulnerable to XML Entity Expansion (aka “billion laughs”) attack allowing denial of service.
CVSS Score
7.5
EPSS Score
0.005
Published
2022-06-21