CVE-2023-26057
XML External Entity (XXE) Vulnerability in Nokia NetAct
Public disclosure |
28-02-2023 |
|---|---|
Last updated |
28-02-2023 |
Vulnerability type |
XML External Entity (XXE) |
CVSS vector |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
CVSS score |
6.5 |
Description
Input validation and proper XML parsers configuration was missing. For an external attacker , it is very difficult to exploit it , because to form this exploit , few dynamically created parameters line Jsession-id, CSRF token and Nxsrf tokens would be needed. The attack can only be performed by an internal user.
On the Perfomance Manager+ page, attackers can import XML files. Support of external entities is enabled for processing of such files, which leads to Arbitrary File Read and SSRF.
Affected products and versions
Product |
Versions |
|---|---|
NetAct |
NetAct 20, NetAct 22 |
Mitigation plan
Fix has been provided on top of NetAct 22
Acknowledgements
- Vladimir Razov from Positive Technologies
- Aleksandr Ustinov from Positive Technologies
References
Change history: Initial version is published on 28-02-2023