Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TrustTunnel has SSRF and private network restriction bypass via numeric address destinations
Vulnerability Description
TrustTunnel is an open-source VPN protocol with a server-side request forgery and and private network restriction bypass in versions prior to 0.9.114. In `tcp_forwarder.rs`, SSRF protection for `allow_private_network_connections = false` was only applied in the `TcpDestination::HostName(peer)` path. The `TcpDestination::Address(peer) => peer` path proceeded to `TcpStream::connect()` without equivalent checks (for example `is_global_ip`, `is_loopback`), allowing loopback/private targets to be reached by supplying a numeric IP. The vulnerability is fixed in version 0.9.114.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
TrustTunnel 代码问题漏洞
Vulnerability Description
TrustTunnel是TrustTunnel开源的一个VPN协议软件。 TrustTunnel 0.9.114之前版本存在代码问题漏洞,该漏洞源于SSRF保护不完整,可能导致绕过私有网络限制并访问环回或私有目标。
CVSS Information
N/A
Vulnerability Type
N/A