Описание
OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vulnerability, which permits unauthorized users to exploit the system, potentially leading to unauthorized access to internal resources and sensitive file disclosure.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | |
| esm-apps/jammy | needed | |
| esm-apps/noble | not-affected | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 89%
0.05001
Низкий
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
nvd
больше 2 лет назад
OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vulnerability, which permits unauthorized users to exploit the system, potentially leading to unauthorized access to internal resources and sensitive file disclosure.
CVSS3: 6.5
debian
больше 2 лет назад
OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vul ...
CVSS3: 6.5
github
больше 2 лет назад
OpenRefine Server-Side Request Forgery vulnerability
EPSS
Процентиль: 89%
0.05001
Низкий
6.5 Medium
CVSS3