CVE-2025-47424 in Retoolالمعلومات

الملخص

بحسب MITRE • 10/05/2025

Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host header can be manipulated.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

مسؤول

MITRE

حجز

07/05/2025

إفشاء

10/05/2025

الاعتدال

تمت الموافقة

إدخال

VDB-308267

EPSS

0.00134

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!