5 matches found
CVE-2024-10207
A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B APROL 4.4-00P5 may allow an authenticated network-based attacker to force the web server to request arbitrary URLs...
CVE-2024-10207
creationtimestamp| type| source ---|---|--- 2025-03-25 06:57:07+00:00| seen| https://t.me/cvedetector/21044 2025-04-03 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-05...
CVE-2024-10207 Server-Side Request Forgery (authenticated) in APROL Web Portal
A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an authenticated network-based attacker to force the web server to request arbitrary URLs...
CVE-2024-10207 Server-Side Request Forgery (authenticated) in APROL Web Portal
A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an authenticated network-based attacker to force the web server to request arbitrary URLs...
CVE-2024-10207
CVE-2024-10207 is a Server-Side Request Forgery affecting the B&R APROL Web Portal prior to 4.4-00P5. The issue allows an authenticated network-based attacker to coerce the web server into requesting arbitrary URLs. CVSS 4.0 base metrics indicate Network access, low attack complexity, and low pri...