2 matches found
CVE-2021-41385
The CVE-2021-41385 entry concerns Securonix SNYPR 6.3.1 Build 184295_0302, where a flaw in the third‑party intelligence connector allows an authenticated user to perform SSRF to access server configuration details. The description consistently states an SSRF path exploited by an authenticated use...
CVE-2022-37108
Summary: CVE-2022-37108 is an injection vulnerability in the syslog-ng configuration wizard of Securonix Snypr 6.4. An application user with the Manage Ingesters permission can coerce remote ingesters to execute arbitrary code by appending text to system-executed files (e.g., crontab entries). Te...