Lucene search
K

4 matches found

NVD
NVD
added 2024/07/17 9:15 a.m.43 views

CVE-2024-31979

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

7.5CVSS0.00738EPSS
Exploits0References2
CVE
CVE
added 2024/07/17 9:4 a.m.50 views

CVE-2024-31979

Apache StreamPipes is affected by a Server-Side Request Forgery (SSRF) vulnerability during the installation process of pipeline elements. The issue stems from insufficient validation of custom endpoints used to fetch/install additional elements, enabling an attacker to induce StreamPipes to issu...

7.5CVSS4.7AI score0.00738EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/17 9:4 a.m.13 views

CVE-2024-31979 Apache StreamPipes: Possibility of SSRF in pipeline element installation process

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

7AI score0.00738EPSS
Exploits0References1
OSV
OSV
added 2024/07/17 9:4 a.m.14 views

CVE-2024-31979 Apache StreamPipes: Possibility of SSRF in pipeline element installation process

Server-Side Request Forgery SSRF vulnerability in Apache StreamPipes during installation process of pipeline elements. Previously, StreamPipes allowed users to configure custom endpoints from which to install additional pipeline elements. These endpoints were not properly validated, allowing an...

7.5CVSS6AI score0.00738EPSS
Exploits0References4
Rows per page
Query Builder