CVE-2016-4374
Description
HPE Release Control (RC) 9.13, 9.20, and 9.21 before 9.21.0005 p4 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and consequently obtain sensitive information or cause a denial of service, via unspecified vectors.
Risk Information
Base Score
7.7
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.24
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2014-2612 ,CVE-2014-2613 ,CVE-2016-1999 ,CVE-2016-4374 are affected in release_control 9.21 | NCM |
| Server-Side Request Forgery (SSRF) Vulnerability (CVE-2016-4374) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234