exploitDog

GHSA-5mcq-h782-4vg7

Опубликовано: 12 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

Ссылки

EPSS

Процентиль: 99%

0.75211

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2024-41570

CVSS3: 9.8

nvd

больше 1 года назад

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

EPSS

Процентиль: 99%

0.75211

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-918