exploitDog

GHSA-w6vh-49p9-j7c9

Опубликовано: 10 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack network resources and consume server-side resources via forged HTTP POST requests.

Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack network resources and consume server-side resources via forged HTTP POST requests.

Ссылки

EPSS

Процентиль: 25%

0.00083

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2023-40148

CVSS3: 6.5

nvd

почти 2 года назад

Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack network resources and consume server-side resources via forged HTTP POST requests.

EPSS

Процентиль: 25%

0.00083

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-918