Описание
Microcks contains a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download
Microcks up to version 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. This vulnerability allows attackers to access network resources and sensitive information via a crafted GET request.
Пакеты
Наименование
io.github.microcks:microcks
maven
Затронутые версииВерсия исправления
< 1.17.1
1.17.1
Связанные уязвимости
CVSS3: 9.8
nvd
около 2 лет назад
Microcks up to 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. This vulnerability allows attackers to access network resources and sensitive information via a crafted GET request.