Lucene search

CVE-2024-29736

🗓️ 19 Jul 2024 09:04:15Reported by [email protected]Type

SSRF vulnerability in Apache CX

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 21
Cvelist	CVE-2024-29736 Apache CXF: SSRF vulnerability via WADL stylesheet parameter	19 Jul 202408:50	–	cvelist
CVE	CVE-2024-29736	19 Jul 202409:15	–	cve
OSV	CVE-2024-29736	19 Jul 202409:15	–	osv
OSV	GHSA-5M3J-PXH7-455P Apache CXF: SSRF vulnerability via WADL stylesheet parameter	19 Jul 202409:32	–	osv
Github Security Blog	Apache CXF: SSRF vulnerability via WADL stylesheet parameter	19 Jul 202409:32	–	github
Vulnrichment	CVE-2024-29736 Apache CXF: SSRF vulnerability via WADL stylesheet parameter	19 Jul 202408:50	–	vulnrichment
Veracode	Server-side Request Forgery (SSRF)	19 Jul 202414:06	–	veracode
RedhatCVE	CVE-2024-29736	23 Jul 202409:17	–	redhatcve
Tenable Nessus	Apache CXF < 3.5.9, 3.6.x < 3.6.4, 4.0.x < 4.0.5 Multiple Vulnerabilities	26 Jul 202400:00	–	nessus
Tenable Nessus	Oracle Business Intelligence Publisher 6.4 / 7.0 (OAS) (October 2024 CPU)	5 Nov 202400:00	–	nessus

Nvd

Node

apache cxfRange<3.5.9

apache cxfRange3.6.0–3.6.4

apache cxfRange4.0.0–4.0.5

Source	Link
openwall	www.openwall.com/lists/oss-security/2024/07/18/2
security	www.security.netapp.com/advisory/ntap-20241115-0003/
lists	www.lists.apache.org/thread/4jtpsswn2r6xommol54p5mg263ysgdw2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jul 2024 09:15Current

CVSS37.5 - 9.1

EPSS0.00566

CWE-918