First published: Tue Nov 26 2024(Updated: )
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
Credit: security-alert@hpe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Hewlett Packard Enterprise Insight Remote Support | <7.14.0.629 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-11622 is considered a critical severity vulnerability due to its potential to disclose sensitive information.
To mitigate CVE-2024-11622, upgrade HPE Insight Remote Support to version 7.14.0.629 or later.
CVE-2024-11622 affects HPE Insight Remote Support versions prior to 7.14.0.629.
Yes, CVE-2024-11622 can be exploited by remote users to disclose information.
CVE-2024-11622 is an XML external entity injection (XXE) vulnerability.