Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:35 a.m.11 views

CVE-2024-22873

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery SSRF via the event subscription function /service/subscription.go. This vulnerability allows attackers to access internal requests via a crafted POST request...

8.1CVSS8AI score0.00666EPSS
Exploits1References1
NVD
NVD
added 2024/02/26 4:27 p.m.18 views

CVE-2024-22873

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery SSRF via the event subscription function /service/subscription.go. This vulnerability allows attackers to access internal requests via a crafted POST request...

8.1CVSS6.9AI score0.00666EPSS
Exploits1References2
Prion
Prion
added 2024/02/26 4:27 p.m.17 views

Server side request forgery (ssrf)

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery SSRF via the event subscription function /service/subscription.go. This vulnerability allows attackers to access internal requests via a crafted POST request...

7.5AI score0.00666EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.13 views

CVE-2024-22873

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery SSRF via the event subscription function /service/subscription.go. This vulnerability allows attackers to access internal requests via a crafted POST request...

7.2AI score0.00666EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/02/26 12:0 a.m.3 views

PT-2024-19593 · Tencent · Tencent Blueking Cmdb

Name of the Vulnerable Software and Affected Versions: Tencent Blueking CMDB versions 3.2.x through 3.9.x Description: The issue is related to Server-Side Request Forgery SSRF via the event subscription function, located at the /service/subscription.go endpoint. This allows attackers to access...

8.1CVSS6.2AI score0.00666EPSS
Exploits1References9
CNNVD
CNNVD
added 2024/02/26 12:0 a.m.4 views

Tencent Blueking CMDB Security Vulnerability

Tencent Blueking CMDB is a configuration management database system from Tencent, China. A security vulnerability exists in Tencent Blueking CMDB versions v3.2.x through v3.9.x, which stems from /service/subscription.go contains a server-side request forgery vulnerability that allows an attacker ...

8.1CVSS6.8AI score0.00666EPSS
Exploits1References5
OSV
OSV
added 2024/02/26 12:0 a.m.10 views

CVE-2024-22873

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery SSRF via the event subscription function /service/subscription.go. This vulnerability allows attackers to access internal requests via a crafted POST request...

8.1CVSS7.4AI score0.00666EPSS
Exploits1References6
Rows per page
Query Builder