CVE-2017-14611

Posted on by admin

CVE-2017-14611

SSRF (Server Side Request Forgery) in Cockpit 0.13.0 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter, related to use of the discontinued aheinze/fetch_url_contents component.

Source: CVE-2017-14611

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다