A host whitelist parser issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-2 that are running only on premise.
References
Link | Resource |
---|---|
https://bitdefender.com/consumer/support/support/security-advisories/host-whitelist-parser-issue-in-gravityzone-console-on-premise-va-11554/ | Broken Link |
https://www.cve.org/CVERecord?id=CVE-2024-4177 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Bitdefender
Published: 2024-06-06T07:59:22.990Z
Updated: 2024-06-06T13:16:59.465Z
Reserved: 2024-04-25T12:17:29.422Z
Link: CVE-2024-4177
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-06-06T08:15:39.767
Modified: 2024-06-11T17:53:13.710
Link: CVE-2024-4177
JSON object: View
Redhat Information
No data.