Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors.
CVSS Vector
AV:N/AC:L/Au:N/C:N/I:P/A:NInfoware Mapsuite
APPInfoware1.0.351.1.48
π΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SSRF
References
Related vulnerabilities
CVE-2014-2843MEDIUM6.1ten sam produkt
Cross-site scripting (XSS) vulnerability in infoware MapSuite MapAPI 1.0.x before 1.0.36 and 1.1.x before 1.1....
CVE-2014-2232MEDIUM5.0ten sam produkt
Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49...