CVE-2021-37425

Published: 2021-08-10T22:15Z

Last Modified: 2024-11-21T06:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Altova MobileTogether Server before 7.3 SP1 allows XXE attacks, such as an InfoSetChanges/Changes attack against /workflowmanagement, or reading mobiletogetherserver.cfg and then reading the certificate and private key. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt