Server-Side Request Forgery (SSRF) Vulnerability in Rebuild v2.8.3: Exposing Real IP Address and Intranet Scanning via fileurl Parameter

Server-Side Request Forgery (SSRF) Vulnerability in Rebuild v2.8.3: Exposing Real IP Address and Intranet Scanning via fileurl Parameter

CVE-2022-30049 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A Server-Side Request Forgery (SSRF) in Rebuild v2.8.3 allows attackers to obtain the real IP address and scan Intranet information via the fileurl parameter.

Learn more about our Cis Benchmark Audit For Server Software.