XML External Entity (XXE) Vulnerability in IBM Mashup Center 3.0.0.1

XML External Entity (XXE) Vulnerability in IBM Mashup Center 3.0.0.1

CVE-2015-7400 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:C

The Lotus Mashups component in IBM Mashup Center 3.0.0.1 allows remote authenticated users to cause a denial of service (CPU consumption) via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Learn more about our Cis Benchmark Audit For Ibm I.