CVE-2024-1021

🗓️ 29 Jan 2024 22:00:08Reported by VulDBType

A critical SSRF vulnerability in Rebuild up to 3.5.5 (CVE-2024-1021

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-1021	29 Jan 202423:31	–	circl
CNNVD	Rebuild Security Vulnerability	29 Jan 202400:00	–	cnnvd
Cvelist	CVE-2024-1021 Rebuild HTTP Request readRawText server-side request forgery	29 Jan 202422:00	–	cvelist
Nuclei	Rebuild <= 3.5.5 - Server-Side Request Forgery	6 Jun 202603:01	–	nuclei
NVD	CVE-2024-1021	29 Jan 202422:15	–	nvd
Prion	Server side request forgery (ssrf)	29 Jan 202422:15	–	prion
Positive Technologies	PT-2024-16118 · Rebuild · Rebuild	29 Jan 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1021	23 May 202509:40	–	redhatcve
VulnCheck KEV	VulnCheck KEV: CVE-2024-1021	4 Apr 202400:00	–	vulncheck_kev
Vulnrichment	CVE-2024-1021 Rebuild HTTP Request readRawText server-side request forgery	29 Jan 202422:00	–	vulnrichment

NVD

Vulners

Node

ruifang-tech rebuildRange≤3.5.5

[
  {
    "vendor": "n/a",
    "product": "Rebuild",
    "versions": [
      {
        "version": "3.5.0",
        "status": "affected"
      },
      {
        "version": "3.5.1",
        "status": "affected"
      },
      {
        "version": "3.5.2",
        "status": "affected"
      },
      {
        "version": "3.5.3",
        "status": "affected"
      },
      {
        "version": "3.5.4",
        "status": "affected"
      },
      {
        "version": "3.5.5",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP Request Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
yuque	www.yuque.com/mailemonyeyongjuan/tha8tr/yemvnt5uo53gfem5
vuldb	www.vuldb.com/

21 Nov 2024 08:49Current

9.5High risk

Vulners AI Score9.5

CVSS 3.16.3 - 9.8

CVSS 26.5

CVSS 36.3

EPSS0.92904

SSVC

CWE-918

In Wild