CVE Daily

CVE-2014-7251

XML external entity (XXE) vulnerability in the WebHMI server in Yokogawa Electri...

Low CVSS 3.2

Overview

XML external entity (XXE) vulnerability in the WebHMI server in Yokogawa Electric Corporation FAST/TOOLS before R9.05-SP2 allows local users to cause a denial of service (CPU or network traffic consumption) or read arbitrary files via unspecified vectors.

CWE: CWE-20 Published: 2014-12-06T15:59:06.060
Risk analysis

This vulnerability is rated 🟢 LOW.

  • CVSS: 3.2 (LOW)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags