Vulnerabilities > Beyondtrust > Beyondinsight

DATE CVE VULNERABILITY TITLE RISK
2024-06-04 CVE-2024-4219 Server-Side Request Forgery (SSRF) vulnerability in Beyondtrust Beyondinsight 23.1
Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors within BeyondInsight, resulting in a server-side request forgery vulnerability.
network
low complexity
beyondtrust CWE-918
critical
 9.1
9.1
2024-06-04 CVE-2024-4220 Unspecified vulnerability in Beyondtrust Beyondinsight
Prior to 23.1, an information disclosure vulnerability exists within BeyondInsight which can allow an attacker to enumerate usernames.
network
low complexity
beyondtrust
5.3
5.3