3 matches found
CVE-2022-20951
A vulnerability in the web-based management interface of Cisco BroadWorks CommPilot application could allow an authenticated, remote attacker to perform a server-side request forgery SSRF attack on an affected device. This vulnerability is due to insufficient validation of user-supplied input. An...
CVE-2022-20951
creationtimestamp| type| source ---|---|--- 2022-12-28 03:09:45+00:00| published-proof-of-concept| https://t.me/thebugbountyhunter/6843 2023-01-03 13:18:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/7476 2023-01-05 15:07:49+00:00| published-proof-of-concept|...
CVE-2022-20951
The CVE-2022-20951 entry affects Cisco BroadWorks CommPilot (web-based management interface). Affects an authenticated, remote attacker via input validation flaws that enable server-side request forgery (SSRF) to access confidential information on the BroadWorks server or other network devices. I...