Количество 2
Количество 2
CVE-2019-10686
почти 7 лет назад
An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled.
CVSS3: 10
EPSS: Низкий
GHSA-fvx3-g627-phm2
почти 7 лет назад
Server-Side Request Forgery (SSRF) in com.ctrip.framework.apollo:apollo
CVSS3: 10
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-10686 An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled. | CVSS3: 10 | 0% Низкий | почти 7 лет назад |
| GHSA-fvx3-g627-phm2 Server-Side Request Forgery (SSRF) in com.ctrip.framework.apollo:apollo | CVSS3: 10 | 0% Низкий | почти 7 лет назад |
Уязвимостей на страницу
20