Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2019-7652
HistoryMay 09, 2019 - 9:29 p.m.

CVE-2019-7652

2019-05-0921:29:07
Google
osv.dev
2

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

78.6%

JSON

TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. To exploit the vulnerability, an attacker must create a new analysis, select URL for Data Type, and provide an SSRF payload like “http://127.0.0.1:22” in the Data parameter. The result can be seen in the main dashboard. Thus, it is possible to do port scans on localhost and intranet hosts.

Related

zdt 2
cvelist 1
exploitdb 1
packetstorm 1
prion 1
exploitpack 1
cve 1
nvd 1
zdt
zdt
Cortex Unshortenlink Analyzer < 1.1 - Server-Side Request Forgery Vulnerability
2019-05-10 00:00:00
TheHive Project Cortex < 1.15.2 - Server-Side Request Forgery Vulnerability
2019-05-10 00:00:00
cvelist
cvelist
CVE-2019-7652
2019-05-09 20:48:57
exploitdb
exploitdb
Cortex Unshortenlink Analyzer &lt; 1.1 - Server-Side Request Forgery
2019-05-10 00:00:00
packetstorm
packetstorm
TheHive Project Cortex 2.1.3 Server Side Request Forgery
2019-05-10 00:00:00
prion
prion
Server side request forgery (ssrf)
2019-05-09 21:29:00
exploitpack
exploitpack
Cortex Unshortenlink Analyzer 1.1 - Server-Side Request Forgery
2019-05-10 00:00:00
cve
cve
CVE-2019-7652
2019-05-09 21:29:07
nvd
nvd
CVE-2019-7652
2019-05-09 21:29:07

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

78.6%

JSON
Related for OSV:CVE-2019-7652
zdt2cvelist1exploitdb1packetstorm1prion1exploitpack1cve1nvd1