QwikSec

Security Database

CVE

CWE

Training

CVE-2023-25195

Published: Mar 28, 2023

Modified: Oct 23, 2024

PUBLISHED

Description

Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache Fineract. Authorized users with limited permissions can gain access to server and may be able to use server for any outbound traffic. This issue affects Apache Fineract: from 1.4 through 1.8.3.

Vendor	Product	Versions
Apache Software Foundation	Apache Fineract	affected `1.4 - <= 1.8.3`

Weaknesses (CWE)

References

https://lists.apache.org/thread/m58fdjmtkfp9h4c0r4l48rv995w3qhb6

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.