exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2024-8952

11 месяцев назад

A Server-Side Request Forgery (SSRF) vulnerability exists in composiohq/composio version v0.4.2, specifically in the /api/actions/execute/WEBTOOL_SCRAPE_WEBSITE_CONTENT endpoint. This vulnerability allows an attacker to read files, access AWS metadata, and interact with local services on the system.

CVSS3: 7.5

EPSS: Низкий

GHSA-qvg9-vp87-h3hr

11 месяцев назад

composio Server-Side Request Forgery (SSRF) vulnerability

CVSS3: 6.8

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2024-8952 A Server-Side Request Forgery (SSRF) vulnerability exists in composiohq/composio version v0.4.2, specifically in the /api/actions/execute/WEBTOOL_SCRAPE_WEBSITE_CONTENT endpoint. This vulnerability allows an attacker to read files, access AWS metadata, and interact with local services on the system.	CVSS3: 7.5	0% Низкий	11 месяцев назад
	GHSA-qvg9-vp87-h3hr composio Server-Side Request Forgery (SSRF) vulnerability	CVSS3: 6.8	0% Низкий	11 месяцев назад

Уязвимостей на страницу