Server-Side Request Forgery vulnerability in Haivision's Aviwest Manager and Aviwest Steamhub. This vulnerability could allow an attacker to enumerate internal network configuration without the need for credentials. An attacker could compromise an internal server and retrieve requests sent by other users.
References
Configurations
No configuration.
History
28 Feb 2024, 14:06
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-28 13:15
Updated : 2024-02-28 14:06
NVD link : CVE-2024-1965
Mitre link : CVE-2024-1965
CVE.ORG link : CVE-2024-1965
JSON object : View
Products Affected
No product.
CWE
CWE-918
Server-Side Request Forgery (SSRF)