exploitDog

CVE-2024-45317

Опубликовано: 11 окт. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

A Server-Side Request Forgery (SSRF) vulnerability in SMA1000 appliance firmware versions 12.4.3-02676 and earlier allows a remote, unauthenticated attacker to cause the SMA1000 server-side application to make requests to an unintended IP address.

Ссылки

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0017

EPSS

Процентиль: 45%

0.00227

Низкий

7.5 High

CVSS3

Дефекты

CWE-918

Связанные уязвимости

GHSA-7f2m-jpcp-wjgr

CVSS3: 7.5

github

больше 1 года назад

A Server-Side Request Forgery (SSRF) vulnerability in SMA1000 appliance firmware versions 12.4.3-02676 and earlier allows a remote, unauthenticated attacker to cause the SMA1000 server-side application to make requests to an unintended IP address.

EPSS

Процентиль: 45%

0.00227

Низкий

7.5 High

CVSS3

Дефекты

CWE-918