Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache ServiceComb Service-Center: attacker can perform SSRF through the frontend API
Vulnerability Description
Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0(include). Users are recommended to upgrade to version 2.2.0, which fixes the issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Apache ServiceComb Service-Center 代码问题漏洞
Vulnerability Description
Apache ServiceComb Service-Center是美国阿帕奇(Apache)基金会的 一个基于 Restful 的服务注册中心,提供微服务发现和微服务管理。 Apache ServiceComb Service-Center 2.1.0及之前版本存在代码问题漏洞,该漏洞源于存在服务器端请求伪造(SSRF)漏洞,攻击者可以通过特制请求获取服务器敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A