CVE-2024-25294

An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.java, proxyDownload,URL parameters...

CVE-2024-25294

An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.java, proxyDownload,URL parameters...

Rebuild 安全漏洞

Rebuild is a highly customizable enterprise management system. A security vulnerability exists in Rebuild v.3.5 that stems from the presence of a Server Request Forgery SSRF vulnerability. The vulnerability can be exploited by an attacker to obtain sensitive information and execute arbitrary code...

CVE-2024-25294

REBUILD v3.5 contains an SSRF vulnerability in FileDownloader.java, proxyDownload, and URL parameters that allows remote attackers to obtain sensitive information and execute arbitrary code. CVSS 3.1 base score 9.1 (CRITICAL) with network access, no user interaction. Public sources across Red Hat...

CVE-2024-25294

An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.java, proxyDownload,URL parameters...