Advisory ID: BT24-05
CVSSv3 Score: 4.8
Severity: Medium
Issue Date: 2024-05-23
Updated On: 2024-05-23
CVE(s): CVE-2024-4219
Synopsis:
BeyondInsight - SSRF
Impacted Product:
BeyondInsight
Summary
Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors within BeyondInsight, resulting in a server-side request forgery vulnerability.
Affected Versions
Product | Version |
|---|---|
BeyondInsight | Prior to 23.2 |
Fixed Versions
Product | Version |
|---|---|
BeyondInsight | 23.2 |