Security Advisory

CVE-2022-25026

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-12 00:00:00

Last updated 2025-04-08 14:18:09

Assigner mitre

State PUBLISHED

Description

A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to gain access to sensitive resources on the internal network via a crafted HTTP request to /trufusionPortal/upDwModuleProxy.

← Browse all CVEs View on cve.org ↗