Lucene search

CVE-2024-0455

🗓️ 26 Feb 2024 16:50:27Reported by GoogleType

osv🔗 osv.dev👁 15 Views

Inclusion of web scraper allows unauthorized access to EC2 instance credential

Reporter	Title	Published	Views	Family All 5
Vulnrichment	CVE-2024-0455 SSRF on AWS deployed instances of AnythingLLM via /metadata	25 Feb 202408:10	–	vulnrichment
Cvelist	CVE-2024-0455 SSRF on AWS deployed instances of AnythingLLM via /metadata	25 Feb 202408:10	–	cvelist
CVE	CVE-2024-0455	26 Feb 202416:27	–	cve
NVD	CVE-2024-0455	26 Feb 202416:27	–	nvd
Prion	Cross site request forgery (csrf)	26 Feb 202416:27	–	prion

Source	Link
github	www.github.com/mintplex-labs/anything-llm/commit/b2b2c2afe15c48952d57b4d01e7108f9515c5f55
huntr	www.huntr.com/bounties/07d83b49-7ebb-40d2-83fc-78381e3c5c9c

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Feb 2024 16:27Current

7High risk

Vulners AI Score7

CVSS39.9

EPSS0.00161

SSVC