exploitDog

GHSA-wggh-6887-64v4

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.6

Описание

SSRF exists in Webmin 1.850 via the PATH_INFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000.

SSRF exists in Webmin 1.850 via the PATH_INFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000.

Ссылки

EPSS

Процентиль: 94%

0.13209

Средний

8.6 High

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2017-15644

CVSS3: 8.6

nvd

больше 8 лет назад

SSRF exists in Webmin 1.850 via the PATH_INFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000.

CVE-2017-15644

CVSS3: 8.6

debian

больше 8 лет назад

SSRF exists in Webmin 1.850 via the PATH_INFO to tunnel/link.cgi, as d ...

EPSS

Процентиль: 94%

0.13209

Средний

8.6 High

CVSS3

CVE ID

Дефекты

CWE-918