Vulnerabilities > Hawt > Hawtio > 1.4.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-03 | CVE-2019-9827 | Server-Side Request Forgery (SSRF) vulnerability in Hawt Hawtio Hawt Hawtio through 2.5.0 is vulnerable to SSRF, allowing a remote attacker to trigger an HTTP request from an affected server to an arbitrary host via the initial /proxy/ substring of a URI. | 9.8 |
| 2018-05-08 | CVE-2017-2594 | Path Traversal vulnerability in Hawt Hawtio hawtio before versions 2.0-beta-1, 2.0-beta-2 2.0-m1, 2.0-m2, 2.0-m3, and 1.5 is vulnerable to a path traversal that leads to a NullPointerException with a full stacktrace. | 7.5 |