Security Advisory

CVE-2022-32457

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-20 02:01:03

Last updated 2024-09-16 22:35:56

Assigner twcert

State PUBLISHED

Description

Digiwin BPM has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform Blind SSRF attack to discover internal network topology base on URL error response.

← Browse all CVEs View on cve.org ↗