Server-Side Request Forgery (SSRF) in com.ctrip.framework.apollo:apollo · CVE-2019-10686 · GitHub Advisory Database · GitHub

Server-Side Request Forgery (SSRF) in com.ctrip.framework.apollo:apollo

Critical severity GitHub Reviewed Published Apr 18, 2019 to the GitHub Advisory Database • Updated Sep 5, 2023

Package

com.ctrip.framework.apollo:apollo (Maven)

Affected versions

<= 1.3.0

Patched versions

None

Description

An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled.

References

Published to the GitHub Advisory Database Apr 18, 2019

Reviewed Jun 16, 2020

Last updated Sep 5, 2023

Severity

Critical

/ 10

CVSS v3 base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H