6 matches found
CVE-2024-48944
Server-Side Request Forgery SSRF vulnerability in Apache Kylin. Through a kylin server, an attacker may forge a request to invoke "/kylin/api/xxx/diag" api on another internal host and possibly get leaked information. There are two preconditions: 1 The attacker has got admin access to a kylin...
CVE-2024-48944
Server-Side Request Forgery SSRF vulnerability in Apache Kylin. Through a kylin server, an attacker may forge a request to invoke "/kylin/api/xxx/diag" api on another internal host and possibly get leaked information. There are two preconditions: 1 The attacker has got admin access to a kylin...
CVE-2024-48944 Apache Kylin: SSRF vulnerability in the diagnosis api
Server-Side Request Forgery SSRF vulnerability in Apache Kylin. Through a kylin server, an attacker may forge a request to invoke "/kylin/api/xxx/diag" api on another internal host and possibly get leaked information. There are two preconditions: 1 The attacker has got admin access to a kylin...
CVE-2024-48944 Apache Kylin: SSRF vulnerability in the diagnosis api
Server-Side Request Forgery SSRF vulnerability in Apache Kylin. Through a kylin server, an attacker may forge a request to invoke "/kylin/api/xxx/diag" api on another internal host and possibly get leaked information. There are two preconditions: 1 The attacker has got admin access to a kylin...
CVE-2024-48944
Apache Kylin is affected by a Server-Side Request Forgery (SSRF) in the /kylin/api/xxx/diag endpoint. The issue requires two preconditions: the attacker has admin access to a Kylin server and a second internal host exposes the /kylin/api/xxx/diag API, allowing forging requests to internal service...
CVE-2024-48944
creationtimestamp| type| source ---|---|--- 2025-03-27 02:03:49+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lld7ipbs3y2k 2025-03-27 16:27:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9139...