Lucene search
+L

28 matches found

Vulnrichment
Vulnrichment
added 2022/10/18 5:40 a.m.10 views

CVE-2022-39055 Changing Information Technology Inc. RAVA certificate validation system - Server-Side Request Forgery (SSRF)

RAVA certificate validation system has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform SSRF attack to discover internal network topology base on query response...

5.3CVSS7.2AI score0.0041EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/18 5:40 a.m.27 views

CVE-2022-39055 Changing Information Technology Inc. RAVA certificate validation system - Server-Side Request Forgery (SSRF)

RAVA certificate validation system has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform SSRF attack to discover internal network topology base on query response...

5.3CVSS5.7AI score0.0041EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 5:40 a.m.49 views

CVE-2022-39055

CVE-2022-39055 affects the RAVA certificate validation system from Changing Information Technology Inc. The vulnerability arises from inadequate filtering of URL parameters, enabling an unauthenticated remote attacker to perform a Server-Side Request Forgery (SSRF) to map internal network topolog...

5.3CVSS5.4AI score0.0041EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/18 12:0 a.m.7 views

PT-2022-24700 · Unknown · Rava Certificate Validation System

Name of the Vulnerable Software and Affected Versions: RAVA certificate validation system affected versions not specified Description: The RAVA certificate validation system has inadequate filtering for the URL parameter, allowing an unauthenticated remote attacker to perform a Server-Side Reques...

5.3CVSS5.2AI score0.0041EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/18 12:0 a.m.5 views

Changing Information Technology RAVA certificate validation system SQL注入漏洞

Changing Information Technology RAVA certificate validation system Panorama Software RAVA certificate validation system website is a credential validation system from China-based Changing Information Technology. The Panorama Software RAVA certificate validation system suffers from a SQL injection...

9.8CVSS8.7AI score0.0076EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/18 12:0 a.m.5 views

Changing Information Technology RAVA certificate validation system 代码问题漏洞

Changing Information Technology RAVA certificate validation system Panorama Software RAVA certificate validation system website is a certificate validation system from Changing Information Technology, China. A security vulnerability exists in the RAVA certificate validation system, which stems fr...

5.3CVSS5.8AI score0.0041EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/10/18 12:0 a.m.7 views

PT-2022-24702 · Unknown · Rava Certificate Validation System

Name of the Vulnerable Software and Affected Versions: RAVA certificate validation system affected versions not specified Description: The issue is related to insufficient filtering for a special parameter of the web page input field in the RAVA certificate validation system. A remote attacker wi...

7.2CVSS7AI score0.00686EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/18 12:0 a.m.7 views

Changing Information Technology RAVA certificate validation system 安全漏洞

Changing Information Technology RAVA certificate validation system Panorama Software RAVA certificate validation system website is a certificate validation system from China-based Changing Information Technology. A security vulnerability exists in the Changing Information Technology RAVA...

7.2CVSS7.5AI score0.00686EPSS
Exploits0References2
Rows per page
Query Builder