Server-Side Request Forgery (SSRF) vulnerability in PlexTrac allowing requests to internal system resources.This issue affects PlexTrac: from 1.61.3 before 2.8.1.
History

Mon, 16 Dec 2024 19:15:00 +0000

Type Values Removed Values Added
Title N1QL Injection Server-side Request Forgery
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 13 Dec 2024 06:00:00 +0000

Type Values Removed Values Added
Description Server-Side Request Forgery (SSRF) vulnerability in PlexTrac allowing requests to internal system resources.This issue affects PlexTrac: from 1.61.3 before 2.8.1.
Title N1QL Injection
Weaknesses CWE-918
References
Metrics cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/U:Red'}


cve-icon MITRE

Status: PUBLISHED

Assigner: PlexTrac

Published: 2024-12-13T05:50:35.088Z

Updated: 2024-12-16T19:04:58.999Z

Reserved: 2024-11-26T19:24:57.713Z

Link: CVE-2024-11836

cve-icon Vulnrichment

Updated: 2024-12-16T19:03:21.522Z

cve-icon NVD

Status : Received

Published: 2024-12-13T06:15:25.773

Modified: 2024-12-13T06:15:25.773

Link: CVE-2024-11836

cve-icon Redhat

No data.