crmeb_java v1.3.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the mergeList method in class com.zbkj.front.pub.ImageMergeController.
Metrics
Affected Vendors & Products
References
History
Fri, 06 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-918 | |
Metrics |
cvssV3_1
|
Thu, 21 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-05-06T00:00:00
Updated: 2024-12-06T21:05:53.670Z
Reserved: 2024-04-23T00:00:00
Link: CVE-2024-33117
Vulnrichment
Updated: 2024-08-02T02:27:53.249Z
NVD
Status : Awaiting Analysis
Published: 2024-05-06T20:15:10.890
Modified: 2024-12-06T21:15:07.340
Link: CVE-2024-33117
Redhat
No data.