Lucene search
HistoryApr 22, 2024 - 2:15 p.m.
CVE-2024-27347
server-side request forgery
apache hugegraph-hubble
upgrade
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
Server-Side Request Forgery (SSRF) vulnerability in Apache HugeGraph-Hubble.This issue affects Apache HugeGraph-Hubble: from 1.0.0 before 1.3.0.
Users are recommended to upgrade to version 1.3.0, which fixes the issue.
Related
osv
osv
Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 15:30:41
github
github
Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 15:30:41
cvelist
cvelist
CVE-2024-27347 Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 14:07:37
vulnrichment
vulnrichment
CVE-2024-27347 Apache HugeGraph-Hubble: SSRF in Hubble connection page
2024-04-22 14:07:37
cve
cve
CVE-2024-27347
2024-04-22 14:15:07
veracode
veracode
Server-Side Request Forgery (SSRF)
2024-04-23 09:28:52
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-27347