|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-11-13 | |
| Rule Name: | Jinher OA C6 ApproveRemindSetExec.aspx XXE Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Jinher OA C6 platform is an enterprise management software launched by Jinhe Software Company that integrates multiple office automation functions. It aims to improve the office efficiency and management level of enterprises by providing comprehensive information solutions. There is an XXE vulnerability in its ApproveRemindSetExec.aspx endpoint, which will lead to information disclosure or other malicious behaviors. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |