Vulnerability Details CVE-2024-33117
crmeb_java v1.3.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the mergeList method in class com.zbkj.front.pub.ImageMergeController.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.2%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2024-33117
-
cpe:2.3:a:crmeb:crmeb_java:1.3.4