CVE-2021-45851

EUVD-2022-1398
A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.
SSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
frangoteamfuxa
1.1.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.youtube.com/watch?v=JE1Kcq3iJpc
https://www.youtube.com/watch?v=JE1Kcq3iJpc