Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/01 12:26 a.m.6 views

CVE-2025-22952

elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...

9.8CVSS6.8AI score0.02818EPSS
Exploits1References1
Circl
Circl
added 2025/02/27 9:59 p.m.7 views

CVE-2025-22952

creationtimestamp| type| source ---|---|--- 2025-02-27 21:59:03+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lj6v7znxps25 2025-02-27 23:27:09+00:00| seen| https://t.me/cvedetector/19091 2025-03-04 11:20:50+00:00| confirmed|...

9.8CVSS8.7AI score0.02818EPSS
Exploits1References5
NVD
NVD
added 2025/02/27 8:16 p.m.14 views

CVE-2025-22952

elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...

9.8CVSS0.02818EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/02/27 12:0 a.m.8 views

CVE-2025-22952

elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery SSRF due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks...

9.6AI score0.02818EPSS
Exploits1References4
CVE
CVE
added 2025/02/27 12:0 a.m.103 views

CVE-2025-22952

Elestio Memos (v0.23.0) is affected by CVE-2025-22952: a Server-Side Request Forgery (SSRF) due to insufficient validation of user-supplied URLs. The Nuclei template confirms the issue as applicable to MEMOS versions up to 0.24.0 and notes that unauthenticated attackers can exploit SSRF to access...

9.8CVSS7AI score0.02818EPSS
In wildExploits1References4Affected Software1
Rows per page
Query Builder