Описание
httparty is an API tool. In versions 0.23.2 and prior, httparty is vulnerable to SSRF. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers. This issue has been patched via commit 0529bcd.
Уязвимые конфигурации
Конфигурация 1Версия до 0.24.0 (исключая)
cpe:2.3:a:jnunemaker:httparty:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00039
Низкий
8.2 High
CVSS3
Дефекты
CWE-918
Связанные уязвимости
CVSS3: 8.2
ubuntu
23 дня назад
httparty is an API tool. In versions 0.23.2 and prior, httparty is vulnerable to SSRF. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers. This issue has been patched via commit 0529bcd.
CVSS3: 8.2
debian
23 дня назад
httparty is an API tool. In versions 0.23.2 and prior, httparty is vul ...
CVSS3: 8.2
github
23 дня назад
httparty Has Potential SSRF Vulnerability That Leads to API Key Leakage
EPSS
Процентиль: 12%
0.00039
Низкий
8.2 High
CVSS3
Дефекты
CWE-918