CVE-2017-18638
CVE-2017-18638
Vexday Risk Score
23Baixo
Decisão SSVC (CISA)
Attend
PoC disponível → acompanhar de perto
Maturidade do exploit
Exploit funcional
Exploit automatizável disponível (Nuclei/Metasploit).
CVSS —EPSS 16.9%KEV nãoPoC —Nuclei simMetasploit —Patch —
Ciclo de vida
11 out 2019Publicada no NVD
Recomendação: Planejar correção próxima — já existe PoC pública.
send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is vulnerable to SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is encoded into an image file and then sent to an e-mail address that can be supplied by the attacker. Thus, an attacker can exfiltrate any information.
Produtos afetados
n/a · n/aReferências
https://blog.orange.tw/2017/07/how-i-chained-4-vulnerabilities-on.html#second-bug-internal-graphite-ssrfhttps://github.com/graphite-project/graphite-web/issues/2008https://github.com/graphite-project/graphite-web/pull/2499https://github.com/graphite-project/graphite-web/security/advisories/GHSA-vfj6-275q-4pvmhttps://lists.debian.org/debian-lts-announce/2019/10/msg00030.htmlhttps://www.youtube.com/watch?v=ds4Gp4xoaeA