Vulnerability Description
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microfocus | Fortify Audit Workbench | 16.10 |
| Microfocus | Fortify Software Security Center | 16.10 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/102902
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM030836
- http://www.securityfocus.com/bid/102902
- https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM030836
FAQ
What is CVE-2018-6486?
CVE-2018-6486 is a vulnerability with a CVSS score of 7.3 (HIGH). XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be e...
How severe is CVE-2018-6486?
CVE-2018-6486 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-6486?
Check the references section above for vendor advisories and patch information. Affected products include: Microfocus Fortify Audit Workbench, Microfocus Fortify Software Security Center.