CVE-2021-40822
65Vexday Risk Score
Patch now. It exploitation observed by VulnCheck and has a working public exploit.
ssvc Actepss 19%
from disclosure to weapon16 days
Published on NVDMay 1
1st PoC+16d
VulnCheck+631d
exploitation probability
19%top 3% of all CVEs
observed exploitation
yesVulnCheck
1 public exploit(s)
GeoServer through 2.18.5 and 2.19.x through 2.19.2 allows SSRF via the option for setting a proxy host.
Affected products
n/a · n/apublic PoCs found — 1
vulncheckvulncheck.com/xdb/7f7982a1c5d2unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.