CVE-2018-10077

MEDIUM

Geist WatchDog Console 3.2.2 - Info Disclosure

Title source: llm

Description

XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.

Exploits (1)

exploitdb WORKING POC
by bzyo · textwebappsxml
https://www.exploit-db.com/exploits/44493

References (2)

Scores

CVSS v3 4.9
EPSS 0.1411
EPSS Percentile 94.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-611
Status published

Affected Products (1)

vertiv/watchdog_console

Timeline

Published Apr 20, 2018
Tracked Since Feb 18, 2026