Security Advisory

CVE-2022-39039

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-03 00:00:00

Last updated 2025-04-10 15:34:48

Assigner twcert

State PUBLISHED

Description

aEnrich’s a+HRD has inadequate filtering for specific URL parameter. An unauthenticated remote attacker can exploit this vulnerability to send arbitrary HTTP(s) request to launch Server-Side Request Forgery (SSRF) attack, to perform arbitrary system command or disrupt service.

← Browse all CVEs View on cve.org ↗