Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
RTI Connext Professional Services Allow Data Leaks Through XML Errors
CVE-2026-4374
Summary
RTI Connext Professional's Routing, Observability, Recording, Queueing, and Cloud Discovery Services may allow unauthorized access to data when handling XML files. This can lead to sensitive data being exposed or manipulated. Users should update to the latest version of RTI Connext Professional to mitigate this risk.
Original title
Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Service,Observability Collector,Recording Service,Queueing Service,Cloud Discovery Service) ...
Original description
Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Service,Observability Collector,Recording Service,Queueing Service,Cloud Discovery Service) allows Serialized Data External Linking, Data Serializat...
nvd CVSS4.0
8.8
Vulnerability type
CWE-611
XML External Entity (XXE)
Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026