CVE-2022-31196

Опубликовано: 02 сент. 2022

Источник: nvd

CVSS3: 7.6

CVSS3: 7.5

EPSS Низкий

Описание

Databasir is a database metadata management platform. Databasir <= 1.06 has Server-Side Request Forgery (SSRF) vulnerability. The SSRF is triggered by a sending a single HTTP POST request to create a databaseType. By supplying a jdbcDriverFileUrl that returns a non 200 response code, the url is executed, the response is logged (both in terminal and in database) and is included in the response. This would allow an attackers to obtain the real IP address and scan Intranet information. This issue was fixed in version 1.0.7.

Ссылки

https://github.com/vran-dev/databasir/commit/226c20e0c9124037671a91d6b3e5083bd2462058
Patch
Third Party Advisory
https://github.com/vran-dev/databasir/releases/tag/v1.0.7
Release Notes
Third Party Advisory
https://github.com/vran-dev/databasir/security/advisories/GHSA-qvg8-427f-852q
Exploit
Third Party Advisory
https://github.com/vran-dev/databasir/commit/226c20e0c9124037671a91d6b3e5083bd2462058
Patch
Third Party Advisory
https://github.com/vran-dev/databasir/releases/tag/v1.0.7
Release Notes
Third Party Advisory
https://github.com/vran-dev/databasir/security/advisories/GHSA-qvg8-427f-852q
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:databasir:databasir:*:*:*:*:*:*:*:*

Версия до 1.0.7 (исключая)

EPSS

Процентиль: 52%

0.00291

Низкий

7.6 High

CVSS3

7.5 High

CVSS3

Дефекты

CWE-918

EPSS

Процентиль: 52%

0.00291

Низкий

7.6 High

CVSS3

7.5 High

CVSS3

Дефекты

CWE-918