Lucene search
+L

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/14 3:30 p.m.11 views

CVE-2026-42592

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, FilterOutboundURL resolves the hostname, checks the resolved IPs against the private-address deny-list, and returns only the error. It discards the resolved addresses. Chromium later performs its own DNS resolution when i...

5.3CVSS5.8AI score0.00186EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/04/07 3:14 p.m.7 views

EUVD-2026-19682

LinkAce is a self-hosted archive to collect website links. Prior to 2.5.4, LinkRepository::update and CheckLinksCommand::checkLink do not check for private IPs. An authenticated user can read responses from internal services AWS IMDSv1, cloud metadata, internal APIs by creating a link with a publ...

5CVSS5.9AI score0.00274EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:38 a.m.5 views

CVE-1999-0529

A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc...

7.5CVSS6.9AI score0.01531EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.4 views

PT-2025-14083 · Apache · Apache Answer

Name of the Vulnerable Software and Affected Versions: Apache Answer versions through 1.4.2 Apache Answer versions prior to 1.4.5 Description: This issue affects users who use externally referenced images. When a user accesses such an image, the provider of the image may obtain private informatio...

9.6CVSS7.5AI score0.00872EPSS
Exploits2References26
Positive Technologies
Positive Technologies
added 2022/02/09 12:0 a.m.7 views

PT-2022-15512 · Sap · S/4Hana

Name of the Vulnerable Software and Affected Versions: S/4HANA affected versions not specified Description: The issue concerns the exposure of private address and bank details of an Employee Business Partner with Supplier Role through the S/4HANA Supplier Factsheet, as well as the exposure of...

6.5CVSS6.3AI score0.00903EPSS
Exploits0References4
OSV
OSV
added 2019/05/29 9:29 p.m.5 views

CVE-2018-13365

An Information Exposure vulnerability in Fortinet FortiOS 6.0.1, 5.6.5 and below, allow attackers to learn private IP as well as the hostname of FortiGate via Application Control Block page...

5.3CVSS5.8AI score0.00909EPSS
Exploits0References1
Rows per page
Query Builder