Server-Side Request Forgery (SSRF) Vulnerability in AdRem NetCrunch 10.6.0.4587: Unauthorized SMB Requests

Server-Side Request Forgery (SSRF) Vulnerability in AdRem NetCrunch 10.6.0.4587: Unauthorized SMB Requests

CVE-2019-14476 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery (SSRF) vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems.

Learn more about our Cis Benchmark Audit For Server Software.