FortiClient VulnerabilityXML External Entity Vulnerability for Freeplane
Description
FreePlane version 1.5.9 and earlier contains a XML External Entity (XXE) vulnerability in XML Parser in mindmap loader that can result in stealing data from victim\'s machine. This attack appears to require the victim to open a specially crafted mind map file. This vulnerability appears to have been fixed in 1.6+.
Affected Applications
Freeplane
CVE References
CVE-2018-1000069Other References
https://nvd.nist.gov/vuln/detail/CVE-2018-1000069| ID | 2341 |
| Created | Aug 26, 2021 |
| Description Updated |
Feb 16, 2022 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Freeplane |
| Patch | manual |
| Application | Freeplane |