CVE-2022-25800

CVE-2022-25800

EPSS 0.7%

Best Practical RT for Incident Response (RTIR) before 4.0.3 and 5.x before 5.0.3 allows SSRF via the whois lookup tool.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://docs.bestpractical.com/release-notes/rtir/4.0.3 https://docs.bestpractical.com/release-notes/rtir/5.0.3 https://docs.bestpractical.com/release-notes/rtir/index.html