Lucene search
@huntrdevCVELIST:CVE-2021-3758HistorySep 02, 2021 - 12:06 p.m.
CVE-2021-3758 Server-Side Request Forgery (SSRF) in bookstackapp/bookstack
2021-09-0212:06:27
CWE-918
@huntrdev
www.cve.org
3
cve-2021-3758
server-side request forgery
bookstackapp
bookstack
vulnerability
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS
0.001
Percentile
21.4%
bookstack is vulnerable to Server-Side Request Forgery (SSRF)
CNA Affected
[
{
"product": "bookstackapp/bookstack",
"vendor": "bookstackapp",
"versions": [
{
"lessThan": "21.08",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
Server-Side Request Forgery (SSRF) in bookstackapp/bookstack
2021-08-13 13:06:38
osv
osv
CVE-2021-3758
2021-09-02 12:15:07
cve
cve
CVE-2021-3758
2021-09-02 12:15:07
prion
prion
Server side request forgery (ssrf)
2021-09-02 12:15:00
nvd
nvd
CVE-2021-3758
2021-09-02 12:15:07
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS
0.001
Percentile
21.4%
Related for CVELIST:CVE-2021-3758