CVE-2020-3946

InstallBuilder AutoUpdate tool and regular installers enabling built with versions earlier than 19.11 are vulnerable to Billion laughs attack (denial-of-service).
Configurations

Configuration 1

cpe:2.3:a:vmware:installbuilder:*:*:*:*:*:*:*:*

Information

Published : 2020-04-20 08:15

Updated : 2021-07-21 11:39


NVD link : CVE-2020-3946

Mitre link : CVE-2020-3946

Products Affected
No products.
CWE
CWE-776

Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')