CVE-2024-22873

Publication date

2024-02-26 00:00:00

Family

mitre

State

PUBLISHED

Description

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery (SSRF) via the event subscription function (/service/subscription.go). This vulnerability allows attackers to access internal requests via a crafted POST request.