exploitDog

CVE-2021-45851

Опубликовано: 16 мар. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.

Ссылки

https://www.youtube.com/watch?v=JE1Kcq3iJpc
Exploit
Third Party Advisory
https://www.youtube.com/watch?v=JE1Kcq3iJpc
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:frangoteam:fuxa:1.1.3:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00922

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-918

Связанные уязвимости

GHSA-9vp3-7qwq-83r9

CVSS3: 7.5

github

почти 4 года назад

Server-Side Request Forgery in FUXA

EPSS

Процентиль: 76%

0.00922

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-918