Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-7652
HistoryMay 09, 2019 - 8:48 p.m.

CVE-2019-7652

2019-05-0920:48:57
mitre
www.cve.org

0.006 Low

EPSS

Percentile

78.6%

JSON

TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. To exploit the vulnerability, an attacker must create a new analysis, select URL for Data Type, and provide an SSRF payload like “http://127.0.0.1:22” in the Data parameter. The result can be seen in the main dashboard. Thus, it is possible to do port scans on localhost and intranet hosts.

Related

packetstorm 1
cve 1
exploitpack 1
nvd 1
prion 1
zdt 2
osv 1
exploitdb 1
packetstorm
packetstorm
TheHive Project Cortex 2.1.3 Server Side Request Forgery
2019-05-10 00:00:00
cve
cve
CVE-2019-7652
2019-05-09 21:29:07
exploitpack
exploitpack
Cortex Unshortenlink Analyzer 1.1 - Server-Side Request Forgery
2019-05-10 00:00:00
nvd
nvd
CVE-2019-7652
2019-05-09 21:29:07
prion
prion
Server side request forgery (ssrf)
2019-05-09 21:29:00
zdt
zdt
Cortex Unshortenlink Analyzer < 1.1 - Server-Side Request Forgery Vulnerability
2019-05-10 00:00:00
TheHive Project Cortex < 1.15.2 - Server-Side Request Forgery Vulnerability
2019-05-10 00:00:00
osv
osv
CVE-2019-7652
2019-05-09 21:29:07
exploitdb
exploitdb
Cortex Unshortenlink Analyzer &lt; 1.1 - Server-Side Request Forgery
2019-05-10 00:00:00

0.006 Low

EPSS

Percentile

78.6%

JSON
Related for CVELIST:CVE-2019-7652
packetstorm1cve1exploitpack1nvd1prion1zdt2osv1exploitdb1