Security Advisory

CVE-2022-23071

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-19 10:15:14

Last updated 2024-09-17 02:16:41

Assigner Mend

State PUBLISHED

Description

In Recipes, versions 0.9.1 through 1.2.5 are vulnerable to Server Side Request Forgery (SSRF), in the “Import Recipe” functionality. When an attacker enters the localhost URL, a low privileged attacker can access/read the internal file system to access sensitive information.

← Browse all CVEs View on cve.org ↗