← volver
CVE-2021-33581

CVE-2021-33581

EPSS 1.2%
MashZone NextGen through 10.7 GA has an SSRF vulnerability that allows an attacker to interact with arbitrary TCP services, by abusing the feature to check the availability of a PPM connection. This occurs in com.idsscheer.ppmmashup.web.webservice.impl.ZPrestoAdminWebService.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33581https://www.softwareag.com/corporate/products/az/mashzone_nextgen/default