Lucene search
CVE-2024-34361
Pi-hole DNS sinkhole vulnerability patched in version 5.18.
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2024-34361 Pi-hole Blind Server-Side Request Forgery (SSRF) vulnerability can lead to Remote Code Execution (RCE) | 5 Jul 202418:30 | – | vulnrichment |
 | CVE-2024-34361 | 5 Jul 202419:15 | – | osv |
 | CVE-2024-34361 Pi-hole Blind Server-Side Request Forgery (SSRF) vulnerability can lead to Remote Code Execution (RCE) | 5 Jul 202418:30 | – | cvelist |
 | CVE-2024-34361 | 5 Jul 202419:15 | – | nvd |
 | Exploit for CVE-2024-34361 | 7 Jul 202421:22 | – | githubexploit |
| Exploit for CVE-2024-34361 | 7 Jul 202421:22 | – | githubexploit |
 | Pi-hole Core < 5.18.3 SSRF/RCE Vulnerability | 8 Jul 202400:00 | – | openvas |
[
{
"vendor": "pi-hole",
"product": "pi-hole",
"versions": [
{
"version": "< 5.18.3",
"status": "affected"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| url | query param | /admin/gravity_DownloadBlocklistFromUrl | SSRF vulnerability allowing arbitrary internal requests leading to RCE. | CWE-918 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo05 Jul 2024 19:15Current
8.5High risk
Vulners AI Score8.5
CVSS38.5
EPSS0.00043
SSVC