Lucene search
GitHub Advisory DatabaseGHSA-77X4-55Q7-4VMJHistoryApr 22, 2024 - 3:30 p.m.
Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-2215:30:41
CWE-918
GitHub Advisory Database
github.com
6
apache
hugegraph-hubble
ssrf
vulnerability
upgrade
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0
Percentile
9.0%
Server-Side Request Forgery (SSRF) vulnerability in Apache HugeGraph-Hubble. This issue affects Apache HugeGraph-Hubble: from 1.0.0 before 1.3.0.
Users are recommended to upgrade to version 1.3.0, which fixes the issue.
Affected configurations
Node
org.apache.hugegraph\hugegraphMatchhubble
Related
osv
osv
Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 15:30:41
nvd
nvd
CVE-2024-27347
2024-04-22 14:15:07
cvelist
cvelist
CVE-2024-27347 Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 14:07:37
vulnrichment
vulnrichment
CVE-2024-27347 Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 14:07:37
veracode
veracode
Server-Side Request Forgery (SSRF)
2024-04-23 09:28:52
cve
cve
CVE-2024-27347
2024-04-22 14:15:07
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0
Percentile
9.0%
Related for GHSA-77X4-55Q7-4VMJ