{"vulnerability": "CVE-2020-24815", "sightings": [{"uuid": "0906fa14-d150-4cde-a7f6-149e6b308332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24815", "type": "seen", "source": "https://t.me/cibsecurity/16797", "content": "\u203c CVE-2020-24815 \u203c\n\nA Server-Side Request Forgery (SSRF) affecting the PDF generation in MicroStrategy 10.4, 2019 before Update 6, and 2020 before Update 2 allows authenticated users to access the content of internal network resources or leak files from the local system via HTML containers embedded in a dossier/dashboard document. NOTE: 10.4., no fix will be released as version will reach end-of-life on 31/12/2020.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-24T20:46:58.000000Z"}]}