Описание
HPE Release Control (RC) 9.13, 9.20, and 9.21 before 9.21.0005 p4 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and consequently obtain sensitive information or cause a denial of service, via unspecified vectors.
Ссылки
- MitigationPatchVendor Advisory
- MitigationPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hp:release_control:9.13:*:*:*:*:*:*:*
cpe:2.3:a:hp:release_control:9.20:*:*:*:*:*:*:*
cpe:2.3:a:hp:release_control:9.21:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.0024
Низкий
7.7 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 7.7
github
больше 3 лет назад
HPE Release Control (RC) 9.13, 9.20, and 9.21 before 9.21.0005 p4 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and consequently obtain sensitive information or cause a denial of service, via unspecified vectors.
EPSS
Процентиль: 47%
0.0024
Низкий
7.7 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-918