NEC.ExpressCluster.ApplyConfig.XML.XXE
Description
This indicates an attack attempt to exploit an Input Validation Error Vulnerability in NEC EXPRESSCLUSTER X.
The vulnerability is due to insufficient handling of XML external entities in requests processed by clpwebmc.exe. A remote unauthenticated attacker could exploit this vulnerability by sending crafted requests to the target server. Successful exploitation could result in disclosing sensitive information in the context of SYSTEM.
Affected Products
NEC EXPRESSCLUSTER X 4.1
NEC EXPRESSCLUSTER X 4.2
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.support.nec.co.jp/en/View.aspx?id=9510100319
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |