2 matches found
CVE-2023-26442
In case Cacheservice was configured to use a sproxyd object-storage backend, it would follow HTTP redirects issued by that backend. An attacker with access to a local or restricted network with the capability to intercept and replay HTTP requests to sproxyd or who is in control of the sproxyd...
CVE-2023-26442
The CVE describes a vulnerability in Cacheservice when configured to use a sproxyd object-storage backend. If redirects issued by sproxyd are followed, a local/restricted network attacker (or someone controlling the sproxyd service) could perform a server-side request forgery (SSRF) and cause Cac...