Vulnerabilities > CVE-2020-35850 - Server-Side Request Forgery (SSRF) vulnerability in Cockpit-Project Cockpit 234

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
cockpit-project
CWE-918

Summary

An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think [it] is a big real-life issue.

Vulnerable Configurations

Part Description Count
Application
Cockpit-Project
1

Common Weakness Enumeration (CWE)