Lucene search
GoogleOSV:CVE-2023-45195HistoryJun 24, 2024 - 10:15 p.m.
CVE-2023-45195
2024-06-2422:15:10
Google
osv.dev
adminerevo
ssrf
vulnerability
database connection
remote attacker
unauthenticated
adminer
adminerevo version 4.8.4
security issue
CVSS4
6.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:L/VI:N/SI:N/VA:N/SA:N/AU:Y
AI Score
6.9
Confidence
Low
Adminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to.Β Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.
Related
ubuntucve
ubuntucve
CVE-2023-45195
2024-06-24 00:00:00
cvelist
cvelist
CVE-2023-45195 Adminer and AdminerEvo SSRF
2024-06-24 21:06:09
cve
cve
CVE-2023-45195
2024-06-24 22:15:10
veracode
veracode
Server-Side Request Forgery (SSRF)
2024-06-27 06:12:10
nvd
nvd
CVE-2023-45195
2024-06-24 22:15:10
debiancve
debiancve
CVE-2023-45195
2024-06-24 22:15:10
vulnrichment
vulnrichment
CVE-2023-45195 Adminer and AdminerEvo SSRF
2024-06-24 21:06:09
CVSS4
6.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:L/VI:N/SI:N/VA:N/SA:N/AU:Y
AI Score
6.9
Confidence
Low
Related for OSV:CVE-2023-45195