CVE ID : CVE-2024-12840

Published : Dec. 20, 2024, 4:15 p.m. | 1 hour ago

Description : A server-side request forgery exists in Satellite. When a PUT HTTP request is made to /http_proxies/test_connection, when supplied with the http_proxies variable set to localhost, the attacker can fetch the localhost banner.

Severity: 5.0 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…