{"uuid": "1cebfd0f-ff18-42ef-b023-2bdff4fd069d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-43473", "type": "seen", "source": "https://t.me/cibsecurity/61187", "content": "\u203c CVE-2022-43473 \u203c\n\nA blind XML External Entity (XXE) vulnerability exists in the Add UCS Device functionality of ManageEngine OpManager 12.6.168. A specially crafted XML file can lead to SSRF. An attacker can serve a malicious XML payload to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T20:35:56.000000Z"}