Cortex-Analyzers

CVEs (1)

• CVE-2019-7652May 9, 2019
  Thehive Project

  UnshortenLink
  risk 0.00cvss —epss 0.05

  TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. To exploit the vulnerability, an attacker must create a new analysis, select URL for Data Type, and provide an SSRF payload like "http://127.0.0.1:22" in the Data parameter.…