CVE-2020-35850
MEDIUM WAF: Medium
CVSS 6.5
Published: 2020-12-30
CWE-918
An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think [it] is a big real-life issue.
WAF Coverage Analysis
Server-Side Request Forgery (SSRF)
Medium WAF Coverage
OWASP: A10:2021 SSRF
934xxx - Node.js / Generic Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| cockpit-project | cockpit | 234 |
References
- github.com (Exploit, Third Party Advisory)
- github.com (Exploit, Third Party Advisory)