exploitDog

GHSA-44gj-57cg-mxj8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is an SSRF in the HA module allowing an unauthenticated attacker to scan for open ports.

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is an SSRF in the HA module allowing an unauthenticated attacker to scan for open ports.

Ссылки

EPSS

Процентиль: 74%

0.00796

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2020-35561

CVSS3: 5.3

nvd

почти 5 лет назад

An issue was discovered MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. There is an SSRF in the HA module allowing an unauthenticated attacker to scan for open ports.

EPSS

Процентиль: 74%

0.00796

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-918