Security Advisory

CVE-2024-4894

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-15 02:53:45

Last updated 2024-08-01 20:55:10

Assigner twcert

State PUBLISHED

Description

ITPison OMICARD EDM fails to properly filter specific URL parameter, allowing unauthenticated remote attackers to modify the parameters and conduct Server-Side Request Forgery (SSRF) attacks. This vulnerability enables attackers to probe internal network information.

← Browse all CVEs View on cve.org ↗