IBM Security Directory Server 6.4.0 does not properly neutralize special elements that are used in XML, allowing attackers to modify the syntax, content, or commands of the XML before it is processed by an end system. IBM X-Force ID: 165812.
https://www.ibm.com/support/pages/node/1077045
https://exchange.xforce.ibmcloud.com/vulnerabilities/165812
Source: Mitre, NVD
Published: 2019-10-02
Updated: 2026-06-17
Base Score: 5.5
Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P
Severity: Medium
Base Score: 7.1
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Severity: High
EPSS: 0.00376