CVE-2024-33857

An issue was discovered in Logpoint before 7.4.0. Due to a lack of input validation on URLs in threat intelligence, an attacker with low-level access to the system can trigger Server Side Request Forgery.

CVSS

No CVSS.

References

Link	Resource
https://servicedesk.logpoint.com/hc/en-us/articles/18533639896093-Server-Side-Request-Forgery-SSRF-on-Threat-Intelligence
https://servicedesk.logpoint.com/hc/en-us/categories/200832975-Knowledge-Center

Configurations

No configuration.

History

07 May 2024, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-07 16:15

Updated : 2024-05-07 20:07

NVD link : CVE-2024-33857

Mitre link : CVE-2024-33857

CVE.ORG link : CVE-2024-33857

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-33857

Attach tags to `CVE-2024-33857`