Vulnerability Details CVE-2024-22217
A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the server that Terminalfour runs on.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.5%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2024-22217
-
cpe:2.3:a:terminalfour:terminalfour:7.4.0004
-
cpe:2.3:a:terminalfour:terminalfour:8.2.0
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.2.1
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.2.3
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.3
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.4
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.5
-
cpe:2.3:a:terminalfour:terminalfour:8.2.18.8
-
cpe:2.3:a:terminalfour:terminalfour:8.3.0
-
cpe:2.3:a:terminalfour:terminalfour:8.3.11.2
-
cpe:2.3:a:terminalfour:terminalfour:8.3.14.2
-
cpe:2.3:a:terminalfour:terminalfour:8.3.16
-
cpe:2.3:a:terminalfour:terminalfour:8.3.8