CVE-2019-7847

CVE Database · CVE-2019-7847

CVE-2019-7847

· N/AModified

CVSS v3.1

N/A

EPSS

3.25%

Published

Jul 18, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Improper Restriction of XML External Entity Reference ('XXE') vulnerability. Successful exploitation could lead to Arbitrary read access to the file system in the context of the current user.

Weaknesses (CWE)

CWE-611

Affected Products (3)

adobe · campaignvulnerable

linux · linux_kernel

microsoft · windows

References (2)

https://helpx.adobe.com/security/products/campaign/apsb19-28.html

Vendor Advisory

https://helpx.adobe.com/security/products/campaign/apsb19-28.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs