VYPR
Unrated severityNVD Advisory· Published Feb 25, 2024· Updated Aug 28, 2024

SSRF - file:// unsanitized access to underlying host files

CVE-2024-0440

Description

Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.