CVE-2022-2339

Sažetak

With this SSRF vulnerability, an attacker can reach internal addresses to make a request as the server and read it's contents. This attack can lead to leak of sensitive information.

Reference

https://github.com/nocodb/nocodb/commit/000ecd886738b965b5997cd905825e3244f48b95
https://huntr.dev/bounties/fff06de8-2a82-49b1-8e81-968731e87eef
https://github.com/nocodb/nocodb/commit/000ecd886738b965b5997cd905825e3244f48b95
https://huntr.dev/bounties/fff06de8-2a82-49b1-8e81-968731e87eef

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

26-08-2025 - 18:50

Objavljeno

07-07-2022 - 04:15