6 matches found
CVE-2024-0440
Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files...
CVE-2024-0440
creationtimestamp| type| source ---|---|--- 2024-02-26 17:42:18+00:00| seen| https://t.me/ctinow/193540 2024-03-14 08:21:46+00:00| seen| https://t.me/ctinow/207533...
CVE-2024-0440
Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files...
CVE-2024-0440
CVE-2024-0440 describes an SSRF-type flaw where an attacker with permission to submit a link or submit via POST a link using the file:// protocol can introspect host files and other relatively stored files. Affected exposure is described across multiple feeds; CVSS data vary by source (NVD: 3.1, ...
CVE-2024-0440 SSRF - file:// unsanitized access to underlying host files
Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files...
CVE-2024-0440 SSRF - file:// unsanitized access to underlying host files
Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files...