Security Advisory

CVE-2020-10791

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-25 13:58:31

Last updated 2024-08-04 11:14:15

Assigner mitre

State PUBLISHED

Description

app/Plugin/GrafanaModule/Controller/GrafanaConfigurationController.php in openITCOCKPIT before 3.7.3 allows remote authenticated users to trigger outbound TCP requests (aka SSRF) via the Test Connection feature (aka testGrafanaConnection) of the Grafana Module.

← Browse all CVEs View on cve.org ↗