[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2023-44313: Apache ServiceComb Service-Center: attacker can perform SSRF through
From: "=?gb18030?B?YmlzbXk=?=" <bismy () qq ! com>
Date: 2024-01-31 7:49:54
Message-ID: tencent_6687C25A542A43764828D914ED19B2B6F205 () qq ! com
[Download RAW message or body]
Affected versions:
- Apache ServiceComb Service-Center through 2.1.0
Description:
Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. \
Attackers can obtain sensitive server information through specially crafted requests.This issue \
affects Apache ServiceComb before 2.1.0(include).
Users are recommended to upgrade to version 2.2.0, which fixes the issue.
Credit:
ΛΥ °² (finder)
References:
https://servicecomb.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-44313
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic