114 matches found
CVE-2022-27234
The connected documents confirm CVE-2022-27234 affects the Intel CVAT software prior to version 2.0.1, where an authenticated user can trigger server-side request forgery to disclose information via network access. Root cause centers on SSRF in CVAT’s handling of network requests. Affected produc...
CVE-2022-27234
Server-side request forgery in the CVAT software maintained by IntelR before version 2.0.1 may allow an authenticated user to potentially enable information disclosure via network access...
PT-2023-12900 · Cvat · Cvat
Name of the Vulnerable Software and Affected Versions: CVAT versions prior to 2.0.1 Description: The issue allows an authenticated user to potentially enable information disclosure via network access due to server-side request forgery. Recommendations: For versions prior to 2.0.1, update to versi...
Intel CVAT 代码问题漏洞
CVAT is an interactive video and image annotation tool for computer vision. A security vulnerability exists in IntelR CVAT prior to version 2.0.1, which can be exploited by an attacker to disclose information via network access hidden enablement...
CVAT 2.0 - Server Side Request Forgery Vulnerability
Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...
CVAT 2.0 Server-Side Request Forgery
Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...
CVAT 2.0 - Server Side Request Forgery
Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...
CVE-2022-31188
CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...
Server side request forgery (ssrf)
CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...
CVAT 代码问题漏洞
CVAT is an interactive video and image annotation tool for computer vision. A code issue vulnerability exists in versions of CVAT prior to 2.0.0, which stems from a url used in a code path without added validation...
CVE-2022-31188 Server-Side Request Forgery Vulnerability in Computer Vision Annotation Tool (CVAT)
CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...
CVE-2022-31188 Server-Side Request Forgery Vulnerability in Computer Vision Annotation Tool (CVAT)
CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...
PT-2022-5432 · Cvat · Cvat
Name of the Vulnerable Software and Affected Versions: CVAT versions prior to 2.0.0 Description: The issue is related to insufficient validation of incoming requests, which can allow a remote attacker to perform a Server-side request forgery SSRF attack. Validation has been added to URLs used in...
CVE-2022-31188
CVAT (CVE-2022-31188) contains a Server-Side Request Forgery (SSRF) vulnerability in versions prior to 2.0.0, tied to URL handling without proper validation. Version 2.0.0 introduced input validation in the affected code path, and users are advised to upgrade to 2.0.0 or later. There are no docum...