CVE-2024-45317

{"id": "CVE-2024-45317", "cveTags": [], "metrics": {}, "published": "2024-10-11T13:15:16.103", "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0017", "source": "PSIRT@sonicwall.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "PSIRT@sonicwall.com", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "A Server-Side Request Forgery (SSRF) vulnerability in SMA1000 appliance firmware versions 12.4.3-02676 and earlier allows a remote, unauthenticated attacker to cause the SMA1000 server-side application to make requests to an unintended IP address."}, {"lang": "es", "value": "Una vulnerabilidad de Server-Side Request Forgery (SSRF) en las versiones de firmware 12.4.3-02676 y anteriores del dispositivo SMA1000 permite que un atacante remoto no autenticado haga que la aplicaci\u00f3n del lado del servidor SMA1000 realice solicitudes a una direcci\u00f3n IP no deseada."}], "lastModified": "2024-10-15T12:58:51.050", "sourceIdentifier": "PSIRT@sonicwall.com"}