exploitDog

GHSA-w55j-pf39-m7cj

Опубликовано: 23 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 2.5

Описание

BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability. It may allow the application to download files from an internally hosted server on localhost.

BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability. It may allow the application to download files from an internally hosted server on localhost.

Ссылки

EPSS

Процентиль: 5%

0.0002

Низкий

2.5 Low

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2024-42182

CVSS3: 2.5

nvd

около 1 года назад

BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability. It may allow the application to download files from an internally hosted server on localhost.

EPSS

Процентиль: 5%

0.0002

Низкий

2.5 Low

CVSS3

CVE ID

Дефекты

CWE-918