Invia #441817: IPC Systems, Inc IPC Unigy™ Management System 04.03.00.08.0027 Server-Side Request Forgery (SSRF)informazioni

TitoloIPC Systems, Inc IPC Unigy™ Management System 04.03.00.08.0027 Server-Side Request Forgery (SSRF)
DescrizioneA Server-Side Request Forgery (SSRF) vulnerability has been identified in the IPC Unigy™ Management System, allowing a remote attacker to send arbitrary HTTP requests to internal and external resources through the vulnerable system. This issue affects Unigy™ Version 04.03.00.08.0027, COP Version 03.00.01.00.0018, and OS Patch Version 06.00.00.34.0008. The vendor has been contacted regarding this vulnerability, with continuous follow-up attempts over the past 6 months, successfully reaching the technical team. As of now, no CVE has been assigned for this issue, and it has not been submitted to another CNA.
Fonte⚠️ https://github.com/br484/br484.github.io/blob/main/archives/WEB/CVE%20-%20IPC%20Unigy%20-%20ingles.md
Utente
 braga (UID 69991)
Sottomissione12/11/2024 00:19 (2 anni fa)
Moderazione22/11/2024 13:55 (11 days later)
StatoAccettato
Voce VulDB285841 [IPC Unigy Management System 04.03.00.08.0027 HTTP Request escalationi di privilegi]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!