216.73.217.64

CVE-2024-29736

· Published 19/07/2024 09:15 · Modified 19/07/2024 13:01

Labels: CVE-2024-29736 2024-07-19CVE-2024-29736CWE-918[email protected]

Essential information

Published
19/07/2024 09:15
Modified
19/07/2024 13:01
Author
Creator
CISA KEV
No
CWE

Description

A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References