CVE-2024-0403

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 1, 2024

CWE ID 918

Summary

CVE-2024-0403 is a vulnerability affecting Recipes version 1.5.10. It allows an attacker to make arbitrary HTTP requests to the server, taking advantage of the application's vulnerability to Server Side Request Forgery (SSRF). This issue poses a significant risk, as an attacker could potentially gain unauthorized access to internal resources or launch further attacks against the target system. Users are strongly encouraged to update their Recipes installations to a patched version as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uGQ2TO
https://www.cve.org/CVERecord?id=CVE-2024-0403
https://nvd.nist.gov/vuln/detail/CVE-2024-0403

Back to Vulnerability Database

CVE-2024-0403

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations