A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.
CVSS
No CVSS.
References
Configurations
No configuration.
History
No history.
Information
Published : 2024-07-19 09:15
Updated : 2024-07-19 13:01
NVD link : CVE-2024-29736
Mitre link : CVE-2024-29736
CVE.ORG link : CVE-2024-29736
JSON object : View
Products Affected
No product.
CWE
CWE-918
Server-Side Request Forgery (SSRF)