CVE-2024-11622
HIGHHPE Insight Remote Support - Info Disclosure
Title source: llmDescription
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
Scores
CVSS v3
7.3
EPSS
0.0003
EPSS Percentile
8.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Classification
CWE
CWE-611
CWE-91
Status
published
Affected Products (1)
hpe/insight_remote_support
< 7.14.0.629
Timeline
Published
Nov 26, 2024
Tracked Since
Feb 18, 2026