MidnightBSD

Advisories for usb_pratirodh_project

CVE-2017-6895 HIGH

USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-611,

Products Affected

Vendor Product Version
usb_pratirodh_project usb_pratirodh -
CVE-2017-6911 LOW

USB Pratirodh is prone to sensitive information disclosure. It stores sensitive information such as username and password in simple usb.xml. An attacker with physical access to the system can modify the file according his own requirements that may aid in further attack.

CVSS 2.0

Severity: LOW

Problem Type: CWE-922,

Products Affected

Vendor Product Version
usb_pratirodh_project usb_pratirodh -