CVE-2014-9301 in Alfresco Serverinformación

Resumen (Inglés)

Server-side request forgery (SSRF) vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter.

Reservar

2014-12-07

Divulgación

2014-12-07

Voces

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilidadCWEExpConCVE
68529Alfresco Server Proxy Servlet escalada de privilegios269Prueba de conceptoArreglo oficialCVE-2014-9301

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

AnteriorVisión De ConjuntoPróximo

Do you need the next level of professionalism?

Upgrade your account now!