CVE-2025-11700
HIGHDescription
N-central versions < 2025.4 are vulnerable to multiple XML External Entities injection leading to information disclosure
Is your site exposed to CVE-2025-11700?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| n-able | n-central |
References
Other References
Frequently Asked Questions
What is CVE-2025-11700? +
How severe is CVE-2025-11700? +
What products are affected by CVE-2025-11700? +
How do I check if I'm vulnerable to CVE-2025-11700? +
Related Vulnerabilities
HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Prior to 6.9.10, org.hl7.fhir.utilities.XsltUtilities …
LocalS3 is an Amazon S3 mock service for testing and local development. Prior to version 1.21, the LocalS3 service's bucket …
Sulu is an open-source PHP content management system based on the Symfony framework. Starting in versions 2.5.21, 2.6.5, and 3.0.0-alpha1, …
CWE-611 Improper Restriction of XML External Entity Reference in the getDocumentBuilder() method of WebDav servlet in Peergos. This issue affects …
Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager WebDriverManager on Windows, MacOS, Linux (XML parsing components modules) …
PHPOffice Math is a library that provides a set of classes to manipulate different formula file formats. Prior to version …