Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hackeroneRetr02332H1:2115212
HistoryAug 18, 2023 - 7:46 a.m.

Nextcloud: DNS pin middleware can be tricked into DNS rebinding allowing SSRF

2023-08-1807:46:54
retr02332
hackerone.com
9
nextcloud
dns pin
middleware
tricked
dns rebinding
ssrf
security advisory
bug bounty

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

29.9%

JSON

Security advisory at https://github.com/nextcloud/security-advisories/security/advisories/GHSA-8f69-f9jg-4x3v

Related

cve 1
prion 1
nextcloud 1
cvelist 1
osv 1
nvd 1
openvas 1
redos 1
cve
cve
CVE-2023-48306
2023-11-21 23:15:07
prion
prion
Server side request forgery (ssrf)
2023-11-21 23:15:00
nextcloud
nextcloud
DNS pin middleware can be tricked into DNS rebinding allowing SSRF
2023-11-21 05:19:36
cvelist
cvelist
CVE-2023-48306 Nextcloud Server DNS pin middleware can be tricked into DNS rebinding allowing SSRF
2023-11-21 22:20:28
osv
osv
CVE-2023-48306
2023-11-21 23:15:07
nvd
nvd
CVE-2023-48306
2023-11-21 23:15:07
openvas
openvas
Nextcloud Server < 22.2.10.16, 23.x < 23.0.12.11, 24.x <24.0.12.7, 25.x < 25.0.11, 26.x < 26.0.6, 27.x < 27.1.0 Multiple Vulnerabilities (GHSA-8JWV-C8C8-9FR3, GHSA-8F69-F9JG-4X3V)
2023-11-22 00:00:00
redos
redos
ROS-20240402-12
2024-04-02 00:00:00

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

29.9%

JSON
Related for H1:2115212
cve1prion1nextcloud1cvelist1osv1nvd1openvas1redos1