CVE-2024-0403

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 1, 2024
Updated: Dec 31, 2024
CWE ID 918

Summary

CVE-2024-0403 is a serious vulnerability affecting Recipes version 1.5.10. It enables attackers to make arbitrary HTTP requests to the server, exploiting the application's vulnerability to Server Side Request Forgery (SSRF). This issue poses a significant risk to the security of the affected system, potentially allowing unauthorized access or data theft. Attackers can craft malicious HTTP requests to be processed by the server, leading to potential security breaches. System administrators are strongly advised to update to the latest version of Recipes to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share