Описание
The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp.
EPSS
Процентиль: 9%
0.00031
Низкий
Дефекты
CWE-306
Связанные уязвимости
github
5 месяцев назад
The system exposes several endpoints, typically including "/int/" in their path, that should be restricted to internal services, but are instead publicly accessible without authentication to any host able to reach the application server on port 443/tcp.
EPSS
Процентиль: 9%
0.00031
Низкий
Дефекты
CWE-306