ID CVE-2020-35850
Summary ** DISPUTED ** An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think [it] is a big real-life issue."
References
Vulnerable Configurations
  • cpe:2.3:a:cockpit-project:cockpit:234:*:*:*:*:*:*:*
    cpe:2.3:a:cockpit-project:cockpit:234:*:*:*:*:*:*:*
CVSS
Base: 4.0 (as of 04-01-2021 - 19:12)
Impact:
Exploitability:
CWE CWE-918
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:S/C:N/I:N/A:P
refmap via4
misc
Last major update 04-01-2021 - 19:12
Published 30-12-2020 - 02:15
Last modified 04-01-2021 - 19:12
Back to Top