📦

blueking_configuration_management_database

Vendor: tencent

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.19% Exploit Prob.

Latest CVE CVE-2024-22873 Feb 26

Security Vulnerability Index

Page 1 / 1

8.1 CVSS

CVE-2024-22873

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery (SSRF) via the event subscription function (/service/subscription.go). This vulnerability allows attackers to access internal requests via a crafted POST request.

EPSS: 0.19%

Severity: HIGH

Feb 26, 2024

Displaying 1 of 1 Total Entries

Total 1 Sections