Lucene search

CVE-2019-18394

🗓️ 24 Oct 2019 00:00:00Reported by AttackerKBType

Server Side Request Forgery (SSRF) vulnerability in FaviconServlet.java in Ignite Realtime Openfire through 4.4.2 allows arbitrary HTTP GET requests

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 17
CVE	CVE-2019-18394	24 Oct 201911:15	–	cve
CVE	CVE-2021-45968	18 Mar 202205:15	–	cve
Veracode	Server-Side Request Forgery (SSRF)	25 Oct 201902:46	–	veracode
Cvelist	CVE-2019-18394	24 Oct 201910:58	–	cvelist
Cvelist	CVE-2021-45968	18 Mar 202204:56	–	cvelist
Circl	CVE-2019-18394	2 Dec 202400:00	–	circl
Nuclei	Ignite Realtime Openfire <=4.4.2 - Server-Side Request Forgery	4 Aug 202015:24	–	nuclei
Github Security Blog	Ignite Realtime Openfire vulnerable to Server Side Request Forgery	24 May 202216:59	–	github
Prion	Server side request forgery (ssrf)	24 Oct 201911:15	–	prion
Prion	Server side request forgery (ssrf)	18 Mar 202205:15	–	prion

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
github	www.github.com/igniterealtime/Openfire/pull/1497
swarm	www.swarm.ptsecurity.com/openfire-admin-console

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Oct 2019 00:00Current

2.7Low risk

Vulners AI Score2.7

EPSS0.93793