Podatność CVE-2024-6980


Publikacja: 2024-07-31

Opis:
A verbose error handling issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-5 running only on premise.

Typ:

CWE-209

(Information Exposure Through an Error Message)

 Referencje:
https://www.bitdefender.com/consumer/support/support/security-advisories/verbose-error-handling-issue-in-gravityzone-update-server-proxy-service/

Copyright 2024, cxsecurity.com

 

Back to Top