CVE-2016-1343

The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuy39059.

Severity	CRITICAL
CVSS	10.0
CWE	NVD-CWE-Other
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20160428-cis
Cisco Nexus Dashboard	cisco-sa-20160428-cis
Cisco Catalyst PON Series Switches	cisco-sa-20160428-cis
Cisco Information Server (CIS)	cisco-sa-20160428-cis