Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-6922
HistoryJul 26, 2024 - 2:15 p.m.

CVE-2024-6922

2024-07-2614:15:03
CWE-918
[email protected]
web.nvd.nist.gov
6
automation anywhere
ssrf
vulnerability
web api

EPSS

0.001

Percentile

18.9%

JSON

Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web API component. An attacker with unauthenticated access to the Automation 360 Control Room HTTPS service (port 443) or HTTP service (port 80) can trigger arbitrary web requests from the server.

Related

rapid7blog 1
nuclei 1
vulnrichment 1
cvelist 1
cve 1
rapid7blog
rapid7blog
CVE-2024-6922: Automation Anywhere Automation 360 Server-Side Request Forgery
2024-07-26 13:05:00
nuclei
nuclei
Automation Anywhere Automation 360 - Server-Side Request Forgery
2024-07-27 09:30:05
vulnrichment
vulnrichment
CVE-2024-6922 Server-Side Request Forgery in Automation 360
2024-07-26 13:52:28
cvelist
cvelist
CVE-2024-6922 Server-Side Request Forgery in Automation 360
2024-07-26 13:52:28
cve
cve
CVE-2024-6922
2024-07-26 14:15:03

EPSS

0.001

Percentile

18.9%

JSON
Related for NVD:CVE-2024-6922
rapid7blog1nuclei1vulnrichment1cvelist1cve1