Описание
IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:forms_experience_builder:8.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:forms_experience_builder:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:forms_experience_builder:8.6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00138
Низкий
3.1 Low
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 3.1
github
больше 3 лет назад
IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources.
EPSS
Процентиль: 34%
0.00138
Низкий
3.1 Low
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-918