Apache Fineract: Server-Side Request Forgery (SSRF) Vulnerability

Apache Fineract: Server-Side Request Forgery (SSRF) Vulnerability

CVE-2023-25195 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache Fineract. Authorized users with limited permissions can gain access to server and may be able to use server for any outbound traffic.  This issue affects Apache Fineract: from 1.4 through 1.8.3.

Learn more about our Cis Benchmark Audit For Apache Http Server.